-
ExternalSecret: Partially load a secret
2 min read
Sometimes we might have a secret stored in the AWS Secrets Manager with multiple properties but we don't really need all the data stored in the secret. We can tell External Secrets Operator to use just a specific key instead of using the whole secret.
13/06/2023
Read more... -
Optional Secrets as Volumes or Environment variables
3 min read
Secretscontain sensitive data such as passwords, tokens, and certificates. They can be used by Kubernetes pods to authenticate with other systems. However, some of them might be optional so we'll want to be able to create the Pod without having to use some template engine to handle whether the secret is present or not.06/03/2023
Read more... -
External Secrets Operator: Using versioned secrets from the AWS Secrets Manager
2 min read
When using the AWS Secrets Manager, every time a secret is updated, it creates a new version with a unique uuid. It will also update the VersionStages AWSCURRENT and AWSPREVIOUS to point to the current and the previous version. We can use them with the External Secrets Operator to retrieve the current and the previous version of a secret
11/01/2023
Read more... -
External Secrets Operator: Generate secrets using a template
2 min read
We can use the External Secrets Operator to retrieve secrets from some backend and push it into a vanilla Kubernetes Secrets to be consumed as usual as a key-value. Not all applications work in the same way so we might need to format it in a way that the application is able to consume it.
08/11/2022
Read more... -
External Secrets Operator with Vault
3 min read
The External Secrets Operator can be configured to retrieve secrets from Vault, to demonstrate this we are going to use a test vault running on Kubernetes.
18/10/2022
Read more...