feat: ✨ Configs: Secrets

Kubernetes Secrets are secure objects used to store sensitive data, such as passwords, API keys, or tokens, within a cluster. They help protect confidential information and reduce the risk of exposing it accidentally. Secrets store data in base64 encoding, ensuring an additional layer of obfuscation. They can be mounted as files, used as environment variables, or accessed by the Kubernetes API, providing a secure and controlled way to share sensitive information with containers.
kevencript · Mar 18, 2023 · 817fec6 · 817fec6
1 parent 7eb28ea
commit 817fec6
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 1 deletion.
diff --git a/k8s/deployment.yaml b/k8s/deployment.yaml
@@ -17,10 +17,12 @@ spec:
     spec: 
       containers:
         - name: go-http-app
-          image: wesleywillians/hello-go:v5 # This image have the fields "NAME" & "AGE" & a file injection on myfamily/family.txt
+          image: wesleywillians/hello-go:v5.2 # This image have the fields "NAME" & "AGE" & a file injection on myfamily/family.txt
           envFrom:
             - configMapRef:
                 name: go-http-app-env
+            - secretRef:
+                name: secret-app
           volumeMounts:
             - mountPath: "/go/myfamily"
               name: file-injection

diff --git a/k8s/secret.yaml b/k8s/secret.yaml
@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-app
+type: Opaque
+data:
+  USER: Z2FicmllbAo=
+  PASSWORD: MTIzNDU2Nwo=