Stack Overflow
Stack Overflow

Questions tagged [kubernetes-secrets]

415 questions
1
vote
0 answers

Intermittent failure creating container on Kubernetes - failing to mount default token

For the past couple of days we have been experiencing an intermittent deployment failure when deploying (via Helm) to Kubernetes v1.11.2. When it fails, kubectl describe usually reports that the container failed to create: Events: Type …
Mike T
  • 11
  • 3
1
vote
4 answers

management of kubernetes secrets

we are starting with Kubernetes and wondering how other projects manage Kubernetes secrets: Since Kubernetes secrets values are just base64 encoded, it's not recommended to commit the secrets into source control If not committing to source control,…
Phuong Nguyen
  • 2,960
  • 1
  • 16
  • 25
1
vote
2 answers

Kubernetes secrets and service accounts

I've been working with kubernetes for the past 6 months and we've deployed a few services. We're just about to deploy another which stores encrypted data and puts the keys in KMS. This requires two service accounts, one for the data and one for the…
Mark
  • 1,544
  • 1
  • 14
  • 26
1
vote
1 answer

Kubernetes secrets and spring boot configuration

Our service is running in kubernetes cluster. I'm trying to make our service to be secured by SSL. For that purpose I added to application.properties: security.require-ssl=true…
Tantre
  • 33
  • 2
  • 9
1
vote
1 answer

Kubernetes Secret in google container engine fails -/ setting oom score for ready process caused error

I created a service which works perfectly in kubernetes. Then i moved the connection string to a kubernetes secret; this is my yaml config: env: - name: AZURE_CONNECTION valueFrom: secretKeyRef: name: azure …
Boas Enkler
  • 12,264
  • 16
  • 69
  • 143
0
votes
0 answers

Helm: Protect cred info in file in secret

My search foo isn't strong on this question and I couldn't find any answers that helped. I have a bit of an inception-style question in setting up a helm chart with secrets keys that are files with protected information. Trying to put together a…
JScott
  • 73
  • 2
  • 9
0
votes
0 answers

Kubernetes secret csi driver restrict secrets in pod

I am using Kubernetes CSI Secret store driver to connect my AKS to my Keyvault. When mounting my the class inside my pods, the volume contains all the secrets (specified in the class yaml). These secrets are now handed over to different apps, yet I…
Bennimi
  • 416
  • 5
  • 14
0
votes
0 answers

How do I store and manage jks files in a way that would be easy to edit them

I have a few java applications that use JKS files for storing client private keys for things like DB certificates. Once these certificates get renewed I'd like an easy way to edit jks file, and replace the old key. The problem is storing these JKS…
Itay Habani
  • 47
  • 1
  • 2
  • 7
0
votes
1 answer

Deployment not running due to ImagePullBackOff reason

I'm trying to create a deployment that is pulling a container image from a private registry. My deployment.yaml file: apiVersion: apps/v1 kind: Deployment metadata: name: my-app namespace: my-namespace spec: replicas: 1 selector: …
Holland Park
  • 21
  • 6
0
votes
0 answers

How to configure Pgbouncer in Airflow

I have been configuring Airflow Helm using the official documentation found at the following link: https://airflow.apache.org/docs/helm-chart/stable/production-guide.html. In my Airflow Helm configuration (values.yaml), I encountered a conflict…
Adil Blanco
  • 616
  • 2
  • 6
  • 23
0
votes
1 answer

stringData field keeps reverting to data in kubernetes secret and therefore values keep getting encoded

I'm creating a secret with below yaml. My application needs the username and password in plaintext apiVersion: v1 stringData: password: "secret" username: "kafka" kind: Secret metadata: name: kafka-secret namespace: kafka type:…
DeirdreRodgers
  • 367
  • 1
  • 4
  • 17
0
votes
1 answer

Use Kustomize Replacements to Replace Values in One Base with Values from Another Base?

I'm updating some of my Kubernetes configurations to use 'replacements' and 'resources' in kustomize as 'vars' and 'bases' have been deprecated. Previously, I used 'vars' in a base (/base/secrets/) like this: apiVersion:…
unitop
  • 13
  • 4
0
votes
3 answers

Load application.properties with mounted secret value

I have mounted one volume which contains DB password inside pod. If I do: kubectl exec -it my-app -- cat /mnt/secrets-store/dbpassword It prints the db password value. In my spring boot app, db password property is defined as…
priyam
  • 74
  • 7
0
votes
0 answers

.Net Core API Rancher Secrets

All I have .net core api that I put into Rancher. I added the secrets to the secrets section of the project. The .net core api is still reading the appsettings.json which has empty settings. How do you set up rancher to override the appsettings.json…
jamesgus
  • 1
0
votes
0 answers

Create multiple targets using external secret operator AWS

I have multiple secrets in the AWS secrets manager. I am using an external secret operator to sync them to Kubernetes secrets. Using external secrets, I can create Kubernetes secrets in my cluster, but I have to create separate externalSecret…
megha
  • 621
  • 2
  • 11
  • 36
1 2 3
27 28