-
External Secrets Operator: Using versioned secrets from the AWS Secrets Manager
2 min read
When using the AWS Secrets Manager, every time a secret is updated, it creates a new version with a unique uuid. It will also update the VersionStages AWSCURRENT and AWSPREVIOUS to point to the current and the previous version. We can use them with the External Secrets Operator to retrieve the current and the previous version of a secret
11/01/2023
Read more... -
Wait for Kubernetes objects to become available using kubectl wait
2 min read
Sometimes we need to wait for some condition to be met before continuing applying resources on the cluster (or accessing them in som way). We can use kubectl wait to block an script until some criteria is met.
09/01/2023
Read more... -
Build container images (and push them to a registry) in Kubernetes with Tekton
5 min read
We can build containers from within a Kubernetes cluster using Kaniko using Pods or use some framework to streamline the process such as Shipwright that uses tekton pipelines to actually run the process. We can skip Shipwright and create directly tekton pipelines.
04/01/2023
Read more... -
Synthetic ClusterRole or Role using an aggregationRule
2 min read
Having a Role or ClusterRole giving permissions to different apiGroups for different reasons makes it difficult to track and, later on, to maintain. By splitting the permissions on logical groups allows us to give predefined groups of permissions to the actual Role.
13/12/2022
Read more... -
Show current Kubernetes context in the menu bar
2 min read
Some commands might be safe to execute while connected to some environments, but can definitely break stuff is applied to the wrong Kubernetes cluster. However, having to execute kubectl config current-context too ofter to make sure we are connected to the right cluster is no fun either.
With kubectx tray we can have a small icon on the tray bar to help us identify what's the current cluster.
30/11/2022
Read more...
Kubernetes:
container orchestration
