Vault-CRD
Github
Search…
Introduction
How does Vault-CRD work?
Supported Secret Types
Secret Type - KEYVALUE
Secret Type - KEYVALUEV2
Secret Type - PKI
Secret Type - PKIJKS
Secret Type - CERT
Secret Type - CERTJKS
Secret Type - DOCKERCFG
Secret Type - PROPERTIES
Change Detection
Install Vault-CRD
Powered By
GitBook
Secret Type - CERTJKS
The CERTJKS-Type is the same as the
CERT-Type
. The only difference is that it converts the saved Certificate into a Java Key Store.
How To
First please read the part of
CERT-TYPE
, because the Vault-CRD expects the Certificate in a specific format.
After this you can create the following Vault resource in Kubernetes:
apiVersion
:
"koudingspawn.de/v1"
kind
:
Vault
metadata
:
name
:
test
-
certjks
spec
:
path
:
"secret/test-url.example.com"
type
:
"CERTJKS"
This will generate the Vault resource and also the secret:
$ kubectl get vault test-certjks
NAME AGE
test-certjks 8d
$ kubectl get secret test-certjks
NAME TYPE DATA AGE
test-certjks Opaque 1 8d
By default the Key Store is saved in the key.jks path. You can change it with the
jksConfiguration
as described in
PKIJKS
.
Change Adjustment Callback
For more details please see
Change Detection
!
Previous
Secret Type - CERT
Next
Secret Type - DOCKERCFG
Last modified
2yr ago
Copy link
On this page
How To
Change Adjustment Callback