JustForFun/kubernetes-learn
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
kubernetes-learn/sealed_secrets/README.md

1.2 KiB
Raw Blame History

Info

  1. Installation
helm repo add sealed-secrets https://bitnami-labs.github.io/sealed-secrets

helm install sealed-secrets sealed-secrets/sealed-secrets -f helm/values.yml
  1. Create a secret
kubectl create secret generic <secret-name> --dry-run=client --from-env-file=<myfile.env> -o yaml | kubeseal \
    --controller-name=sealed-secrets \
    --controller-namespace=<namespace> \
    --format yaml \
    -n <namespace>

OR

echo -n "MySecret" | kubeseal --raw --name <secret-name> \
    --controller-name=sealed-secrets \
    --controller-namespace=<namespace> \
    -n <namespace>

OR

cat <file> | kubeseal -n <namespace> -o yaml
  1. Validate encrypted data
cat <mysealedsecretfile.yaml> | kubeseal --validate --controller-name=sealed-secrets --controller-namespace=<namespace>

OR

kubectl kustomize | yq '. | select(.kind == "SealedSecret")' --yaml-output | kubeseal --validate --controller-name=sealed-secrets --controller-namespace=<namespace>
  1. Check status of sealed secret
kubectl describe sealedsecrets.bitnami.com/<secret-name> -n <namespace>