444 questions
0
votes
0
answers
15
views
Clarify template usage for nested secret paths in InfisicalSecret CRD
I'm using InfisicalSecret to manage Kubernetes secrets in my cluster, and I'm organizing my secrets in nested folders such as /be/core/auth/DB_USER.
However, it's not entirely clear from the ...
- 101
0
votes
0
answers
45
views
Getting Invalid username and password on github repo configuration from rancher UI
On rancher UI under the repository tab I am trying to connect a github repo. It is using a basic auth secret with username and password. However, its failing the authentication with "Invalid ...
- 451
1
vote
1
answer
42
views
How to move shared configuration and sensitive data to a global config and secrets in Helm?
I have the following project structure:
some-module1
templates
deployment.yaml
values.yaml
some-module2
templates
deployment.yaml
values.yaml
some-module3
templates
deployment....
0
votes
0
answers
26
views
Unable to use mysql root password from kubernetes secret manifest
I am facing an issue while using kubernetes secret manifest and instead secret using, root plain password i can able run containers
---this is deployment file
kind: Deployment
apiVersion: apps/v1
...
0
votes
0
answers
128
views
C# secret access on local and Kubernites
I am looking for a way to access my secrets from Kubernetes and locally in my C# project.
Locally I have my secrets.json:
{
"OpenAi": {
"Key": "<Key>"
},
}
...
1
vote
1
answer
95
views
Auto certificate expiration date check in .jks in Kubernetes secret
I have certificates stored in .jks file. The jks keystore is in the Kubernetes secret.
Is there any way to check the expiration date in Kubernetes itself?
For TLS certificates, we use X.509 exporter ...
- 11
0
votes
1
answer
158
views
How can I set up secrets with GKE?
I have a .env file of many of the secrets used in a python container running on GKE, but os.getenv() always returns None. Is it possible to load these secrets into GKE, where they can be accessed by ...
2
votes
2
answers
304
views
AKS addon: azure-keyvault-secrets-provider is unable to sync k8s secret
1)We have enabled addons for azure keyvault by issuing below command on AKS:
az aks enable-addons --addons azure-keyvault-secrets-provider --name CLUSTER-NAME --resource-group RESOURCE-GROUP-NAME
Then,...
- 913
0
votes
0
answers
207
views
Skaffold before and after deploy hooks when decrypting secrets in before hook and using kustomize
According to the Skaffold lifecycle hooks documentation, I have added the following before and after hooks to my skaffold.yaml:
deploy:
kubectl:
hooks:
before:
- host:
...
- 9,087
1
vote
0
answers
60
views
Terraform often tries to update kubernetes_secret with a resource "id"
I have many clusters with many secrets in each cluster. I am using Terraform to manage these clusters.
Every now and then when I run a plan when there are no changes of any kind to the code, terraform ...
- 376
0
votes
1
answer
130
views
Creating K8s Secrets and Jobs dynamically - replacing sensitive placeholder values
In my Github Actions workflow, I am trying to dynamically create one K8s Job, and K8s Secret or Configmap per schema, in a list that I’m fetching from Snowflake.
I’m looking for the best way is to ...
- 621
0
votes
0
answers
28
views
Register ConfigConnector created cluster in ArgoCD
I am trying to setup an environment with GKE, ConfigConnector and ArgoCD.
I have management cluster where I installed ArgoCD and ConfigConnector. Then I use ConfigConnector to create a new GKE cluster ...
- 1,378
0
votes
2
answers
740
views
External Secrets unable to read plain text
Hi I have an external Secrets created that I want to read the secrets from SSM Parameter.
However this secrets are stored as string rather than JSON format.
I'm getting this error:
unable to ...
- 731
0
votes
2
answers
229
views
How to create kubernetes generic secret without base64 encoding?
for example I'm creating a kubernetes generic secret using following:
kubectl create secret generic passwords \
--from-literal=TestUser='mypass' -n mynamespace
And I will get the following secret:
# ...
0
votes
0
answers
239
views
How to use securityConfigSecret in Opensearch with admin password being a sensitive value
I'm trying to use a set of roles with custom-defined permissions and OIDC as authentication backend for the OpenSearch cluster deployed using opensearch-operator. I also want to have the password for ...
- 123