-
Optional Secrets as Volumes or Environment variables
3 min read
Secretscontain sensitive data such as passwords, tokens, and certificates. They can be used by Kubernetes pods to authenticate with other systems. However, some of them might be optional so we'll want to be able to create the Pod without having to use some template engine to handle whether the secret is present or not.06/03/2023
Read more... -
External Secrets Operator: Using versioned secrets from the AWS Secrets Manager
2 min read
When using the AWS Secrets Manager, every time a secret is updated, it creates a new version with a unique uuid. It will also update the VersionStages AWSCURRENT and AWSPREVIOUS to point to the current and the previous version. We can use them with the External Secrets Operator to retrieve the current and the previous version of a secret
11/01/2023
Read more... -
External Secrets Operator: Generate secrets using a template
2 min read
We can use the External Secrets Operator to retrieve secrets from some backend and push it into a vanilla Kubernetes Secrets to be consumed as usual as a key-value. Not all applications work in the same way so we might need to format it in a way that the application is able to consume it.
08/11/2022
Read more... -
External Secrets Operator with Vault
3 min read
The External Secrets Operator can be configured to retrieve secrets from Vault, to demonstrate this we are going to use a test vault running on Kubernetes.
18/10/2022
Read more... -
Updating secrets using the External Secrets Operator
3 min read
When we are using an ExternalSecret the actual secret is stored elsewhere, being the External Secret Operator in charge of updating the Secret object with the datata if fetches from the SecretStore. What happens when the Secret is updated?
11/10/2022
Read more...