Vault-CRD
Search…
Secret Type - KEYVALUE
The KEYVALUE-Type is made for synchronising Secrets stored in a KV Secret Engine with Kubernetes Secrets.
It only supports simple Key-Value pairs and not nested Values.

How To

First write some secrets to HashiCorp Vault:
1
$ vault write secret/test-secret key=value key1=value1
Copied!
After this create the following Vault-Resource and apply it to Kubernetes:
1
apiVersion: "koudingspawn.de/v1"
2
kind: Vault
3
metadata:
4
name: test-secret
5
spec:
6
type: "KEYVALUE"
7
path: "secret/test-secret"
Copied!
Now you should see, that new Secret and the Vault resource are available:
1
$ kubectl get vault test-secret
2
NAME AGE
3
test-secret 7d
Copied!
1
$ kubectl get secret test-secret
2
NAME TYPE DATA AGE
3
test-secret Opaque 2 7d
Copied!

Change Adjustment Callback

For more details please see Change Detection!
Last modified 1yr ago