secrets-init add support for fetching values from key/value secrets (AWS Secrets Manager only)

add support for fetching values from key/value secrets (AWS Secrets Manager only)

Open cheddarwhizzy opened this issue 4 years ago • 1 comments

trafficstars

Currently this repo only supports a single plaintext secret to be fetched. This PR allows you to specify the same ARN with a #KEY to fetch only the value from that key. This was inspired from previously using https://github.com/banzaicloud/bank-vaults/tree/master/charts/vault-secrets-webhook

- name: PGPASSWORD
  value: arn:aws:secretsmanager:us-west-2:<account_id>:secret:my-database-secret#DB_PASSWORD
- name: PGUSER
  value: arn:aws:secretsmanager:us-west-2:<account_id>:secret:my-database-secret#DB_USER

EDIT: Testing this requires adding 2 flags to kube-secrets-init command

- --image=yourrepo/this-image:latest
- --pull-policy=Always

Apr 02 '21 21:04 cheddarwhizzy

@cheddarwhizzy would you like to rebase this PR and decide either to enhance existing functionality

Oct 27 '21 15:10 alexei-led

secrets-init secrets-init copied to clipboard

add support for fetching values from key/value secrets (AWS Secrets Manager only)

secrets-init
secrets-init copied to clipboard