Reads secrets from Vault and creates configmaps or secrets on Kubenetes. It uses Vault agent to keep the secrets always InSync with between Vault and Kubernetes
-
Gihub releases
-
Start using good commit messages for the Changelog
-
Version Docker images
-
How to manage Service accounts and Roles
-
How to manage VaultSecret deletion and K8s secret. For now we do nothing
Ideally we will be using Kubernetes auth backend
Also referenced on he Vault Agent documentation https://learn.hashicorp.com/vault/identity-access-management/vault-agent-k8s
It can fetch secrets and template them into a more complex strings, multiline,…
Created using operator-sdk for GoLang
set -e &&\
operator-sdk generate k8s &&\
operator-sdk generate crds &&\
operator-sdk build carlosjgp/vault-secret-operator
To publish the image to DockerHub (credentials required)
docker push carlosjgp/vault-secret-operator
For local development with Minikube use
minikube cache add carlosjgp/vault-secret-operator