440 questions
-1
votes
1
answer
91
views
Trying to sync GCP secret with GKE [closed]
I am trying to sync GCP Secret to my GCP Gke secret.
I created SecretProviderClass.
% kubectl -n dev get secretproviderclass backend-secret -o yaml
apiVersion: secrets-store.csi.x-k8s.io/v1
kind: ...
- 21.4k
0
votes
0
answers
91
views
Getting Invalid username and password on github repo configuration from rancher UI
On rancher UI under the repository tab I am trying to connect a github repo. It is using a basic auth secret with username and password. However, its failing the authentication with "Invalid ...
- 471
1
vote
1
answer
82
views
How to move shared configuration and sensitive data to a global config and secrets in Helm?
I have the following project structure:
some-module1
templates
deployment.yaml
values.yaml
some-module2
templates
deployment.yaml
values.yaml
some-module3
templates
deployment....
0
votes
0
answers
217
views
C# secret access on local and Kubernites
I am looking for a way to access my secrets from Kubernetes and locally in my C# project.
Locally I have my secrets.json:
{
"OpenAi": {
"Key": "<Key>"
},
}
...
1
vote
1
answer
151
views
Auto certificate expiration date check in .jks in Kubernetes secret
I have certificates stored in .jks file. The jks keystore is in the Kubernetes secret.
Is there any way to check the expiration date in Kubernetes itself?
For TLS certificates, we use X.509 exporter ...
- 11
0
votes
1
answer
328
views
How can I set up secrets with GKE?
I have a .env file of many of the secrets used in a python container running on GKE, but os.getenv() always returns None. Is it possible to load these secrets into GKE, where they can be accessed by ...
2
votes
2
answers
484
views
AKS addon: azure-keyvault-secrets-provider is unable to sync k8s secret
1)We have enabled addons for azure keyvault by issuing below command on AKS:
az aks enable-addons --addons azure-keyvault-secrets-provider --name CLUSTER-NAME --resource-group RESOURCE-GROUP-NAME
Then,...
- 913
1
vote
0
answers
73
views
Terraform often tries to update kubernetes_secret with a resource "id"
I have many clusters with many secrets in each cluster. I am using Terraform to manage these clusters.
Every now and then when I run a plan when there are no changes of any kind to the code, terraform ...
- 386
0
votes
1
answer
168
views
Creating K8s Secrets and Jobs dynamically - replacing sensitive placeholder values
In my Github Actions workflow, I am trying to dynamically create one K8s Job, and K8s Secret or Configmap per schema, in a list that I’m fetching from Snowflake.
I’m looking for the best way is to ...
- 631
1
vote
2
answers
1k
views
External Secrets unable to read plain text
Hi I have an external Secrets created that I want to read the secrets from SSM Parameter.
However this secrets are stored as string rather than JSON format.
I'm getting this error:
unable to ...
- 761
0
votes
2
answers
432
views
How to create kubernetes generic secret without base64 encoding?
for example I'm creating a kubernetes generic secret using following:
kubectl create secret generic passwords \
--from-literal=TestUser='mypass' -n mynamespace
And I will get the following secret:
# ...
0
votes
0
answers
374
views
How to use securityConfigSecret in Opensearch with admin password being a sensitive value
I'm trying to use a set of roles with custom-defined permissions and OIDC as authentication backend for the OpenSearch cluster deployed using opensearch-operator. I also want to have the password for ...
- 123
1
vote
1
answer
208
views
Is there a way to mount only the file from k8s secret to a pod without disturbing the existing files in the location?
I am trying to mount a file secret.txt from the secret to location /opt/tomcat/conf/secret.txt. there are other files at the same location e.g. /opt/tomcat/conf/creds.txt that I want to retain.
This ...
0
votes
1
answer
187
views
How to mount specific fields in secretmanager using secretstore csi driver
Trying to mount only specific keys from the aws secretmanager as file to the pods using below.
Value of aws secret mytestsecret:
{"key1": "value1", "key2": "value2&...
- 140
0
votes
1
answer
278
views
Is it possible to hide pod-mounted kubernetes secrets?
I have the following question, at my work I have secrets stored in a keyvault and I consume them through a secretProviderClass mounted on a pod path.
They ask me if it is possible that when entering ...
