Vault-CRD
Github
Search…
Introduction
How does Vault-CRD work?
Supported Secret Types
Secret Type - KEYVALUE
Secret Type - KEYVALUEV2
Secret Type - PKI
Secret Type - PKIJKS
Secret Type - CERT
Secret Type - CERTJKS
Secret Type - DOCKERCFG
Secret Type - PROPERTIES
Change Detection
Install Vault-CRD
Powered By GitBook
Secret Type - CERTJKS
The CERTJKS-Type is the same as the CERT-Type. The only difference is that it converts the saved Certificate into a Java Key Store.

How To

First please read the part of CERT-TYPE, because the Vault-CRD expects the Certificate in a specific format.
After this you can create the following Vault resource in Kubernetes:
1
apiVersion: "koudingspawn.de/v1"
2
kind: Vault
3
metadata:
4
name: test-certjks
5
spec:
6
path: "secret/test-url.example.com"
7
type: "CERTJKS"
Copied!
This will generate the Vault resource and also the secret:
1
$ kubectl get vault test-certjks
2
NAME AGE
3
test-certjks 8d
Copied!
1
$ kubectl get secret test-certjks
2
NAME TYPE DATA AGE
3
test-certjks Opaque 1 8d
Copied!
By default the Key Store is saved in the key.jks path. You can change it with the jksConfiguration as described in PKIJKS.

Change Adjustment Callback

For more details please see Change Detection!
Previous
Secret Type - CERT
Next
Secret Type - DOCKERCFG
Last modified 1yr ago
Copy link
Contents
How To
Change Adjustment Callback