-
Notifications
You must be signed in to change notification settings - Fork 0
K8s Secret
udx-github edited this page Jul 3, 2026
·
3 revisions
Creates a Kubernetes Opaque secret for application-level sensitive data.
Use this module when a Rabbit service needs to inject secrets into pods that are not managed by GCP Secret Manager directly.
- Opaque secret creation in a specified namespace.
- Secret data provided via Terraform variable (populated by R2A at runtime).
- A kubeconfig secret created by the
k8s-accessmodule. - The target namespace must exist.
- The secret is always named
app-secretin the target namespace. -
secret_datais populated by R2A at runtime from the Terraform variable, not from the YAML config file. - The
configurationsblock only specifies the target namespace. The actual secret values come from thesecret_dataTerraform variable populated by R2A at runtime.
services:
- name: "k8s Secret"
module: "k8s-secret"
id: "app-secret"
deployment_order: 70
configurations:
namespace: "www-example-com"This module does not produce outputs.
The fields below are public module inputs under configurations.
configurations:
namespace: "www-example-com"| Field | Type | Required | Description |
|---|---|---|---|
namespace |
string | Yes | Kubernetes namespace for the secret. |
- AWS ACM Certificate
- AWS CloudFormation Stack
- AWS CloudFront Distribution
- AWS CloudFront Response Headers Policy
- AWS Route53 DNS
- AWS WAF
- GCP GKE Cluster
- GCP GKE Node Pool
- GCP IAM
- GCP Monitoring
- GCP Networking
- GCP PostgreSQL Instance
- GCP Secret Manager
- GCP SQL Instance
- GCP Static IP
- GCP Storage
- Ghost Inspector Sync
- K8s Access
- K8s ConfigMap
- K8s Deployment
- K8s HPA
- K8s HTTP Gateway Route
- K8s HTTP Health Check Policy
- K8s Memcached
- K8s Namespace
- K8s PDB
- K8s Secret
- K8s Service
- K8s Shared HTTP Gateway
- NewRelic APM Browser
- NewRelic Synthetic Monitors