Mark Cupitt

Voting for this as well, we are using secrets generated by the Zalando PostgreSQL Operator, which is in its own namespace, however, consumers of the database services live ion other...

IN case anyone else is interested, we intend to also use ClusterSecret with https://github.com/stakater/Reloader to trigger pod and deployment restarts on secret rotations

We have run into this problem as well, we use Hashicorp as our keystore and prefer to 'give" keycloak the password to use via a secret, then when it changes...

I have been able to get this to work, this guy has the same issue, he [describes](https://stackoverflow.com/questions/67965255/import-commonjs-default-from-es6-module) it probably a little better: also, this statement from another [read ](https://stackoverflow.com/questions/70399241/importing-commonjs-modules-to-an-esm-syntax)may help...

@codablock Thanks, I am afraid I am not aware of how Helm Hooks work, but I do have two immediate concerns, the hook will always run, and will the jinja...

@codablock I did not see this until this morning, its a possible solution, Ill look at it, I guess using jinja templates to create the env vars might work, but...

@codablock spent today on this .. using an alpine image, to make it happen .. the repo clone is a good idea, but I have opted to use config-maps for...

Yeah, we gave up on the hooks and job approach, too inflexible and very difficult to maintain the bash script in a config map We ended up wrapping kluctl in...

Just realized the `key` was incorrect, it should be done like this, but error still remains ``` - clusterSecret: name: {{mailserver_roundcube_db_owner_secret}}-helm namespace: {{namespace_mailserver}} key: data ```

well, we transformed a postgres secret to a new secret, now we want to extract the transformed username password to vars and use them in a helm values file, which...