Vault-CRD
Github
Introduction
How does Vault-CRD work?
Supported Secret Types
Secret Type - KEYVALUE
Secret Type - KEYVALUEV2
Secret Type - PKI
Secret Type - PKIJKS
Secret Type - CERT
Secret Type - CERTJKS
Secret Type - DOCKERCFG
Install Vault-CRD
Powered by GitBook
Have an account? Sign in

Secret Type - DOCKERCFG

Last updated 10 months ago

The DOCKERCFG-Type is for syncing the Pull-Credentials for secured Docker repositories. The data has to be saved in a specific format inside a KV Secret Engine.

How To:

As already described the Pull-Credentials must be saved in a specific format inside a KV Secret Engine:

$ vault write secret/gitlab-hub url=registry.gitlab.com username=username password=VERYSECUREPASSWORD email=email@test.com

After this you can apply the following Vault Resource to Kubernetes:

apiVersion: "koudingspawn.de/v1"
kind: Vault
metadata:
  name: test-dockercfg
spec:
  path: "secret/gitlab-hub"
  type: "DOCKERCFG"

Now you should see a Vault resource in Kubernetes and the created Docker Pull-Credentials:

$ kubectl get vault test-dockercfg
NAME             AGE
test-dockercfg   8d
$ kubectl get secret test-dockercfg
NAME             TYPE                      DATA      AGE
test-dockercfg   kubernetes.io/dockercfg   1         8d

Previous
Secret Type - CERTJKS
Next
Install Vault-CRD