Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adding Hashicorp Vault as secret manager for pi cluster #91

Closed
ricsanfre opened this issue Dec 23, 2022 · 0 comments · Fixed by #98
Closed

Adding Hashicorp Vault as secret manager for pi cluster #91

ricsanfre opened this issue Dec 23, 2022 · 0 comments · Fixed by #98
Labels
new feature new feature
Milestone
release 1.6

Comments

@ricsanfre
Copy link
Owner

ricsanfre commented Dec 23, 2022
edited

Feature Request

Add Hashicorp Vault as secret manager for the cluster.

Implementation details

Two alternatives to be considered

  • Use external Vault server: Server running in one of the cluster nodes.
  • Vault as a kubernetes application. Hashicorp Official helm can be used to deploy or the one provided by Banzai: Bank-vaults. Banzai's automatically executes the unseal process.

In both cases External Secrets Operator can be used to automatically create Kubernetes Secrets from the data stored in Vault.

References
@ricsanfre ricsanfre added the enhancement New feature or request label Dec 23, 2022
@ricsanfre ricsanfre added this to the release 1.6 milestone Jan 26, 2023
@ricsanfre ricsanfre added new feature new feature and removed enhancement New feature or request labels Jan 27, 2023
@ricsanfre ricsanfre mentioned this issue Jan 29, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
new feature new feature
Projects
None yet
Milestone
release 1.6
Development

Successfully merging a pull request may close this issue.

Feature/Argocd ricsanfre/pi-cluster
1 participant
@ricsanfre