vault-csi-provider
vault-csi-provider copied to clipboard
Support secret templates in addition to raw secret values
The vault-agent-in-sidecar supports secret templates: https://www.vaultproject.io/docs/platform/k8s/injector#secret-templates
Are there plans to support it in this secrets csi provider? (it seems to be briefly mentioned in https://github.com/hashicorp/vault-csi-provider/pull/61#discussion_r568650698)
Thanks!
We don't have any firm timeline on this, but we have discussed this internally and want to add it. Thanks for raising it, it's really helpful to get an idea of our users' priorities!
Any update on this feature? It would free up a lot of resources used for sidecars across our clusters 💸
Hey Tom (@tomhjp), any update on where this sits in priorities? Would be super helpful to make things even more secure (not hardcoding keys in our Github repo)
I would love or this and the Vault Secrets Operator for Kubernetes to both have this feature. Basically any of the vault functions of consul-template
should be valid in here.
There are many valid use cases for this. One that jumps readily to mind is creating a pgpass
file.