Example: External secret

Note

Requires version 2.4

Note

Non stadard Kubernetes object, requires external secret operator.

Create a Secret from a secret store with one value and use it in a container as an environment variable.

externalSecret:
  my-secret:
    secretStoreRef:
      name: my-secret-store
      kind: SecretStore
    data:
      secret1:
        remoteRef:
          key: my-secret1

services:
  deployment1:
    enabled: true
    containers:
      container1:
        image:
          repository: camptocamp/image
          tag: latest
        env:
          env1:
            type: secret
            name: self-external-my-secret
            key: secret1

Docker registries from external secrets:

dockerregistry:
  external: true
  content:
    docker.io:
      email: [email protected]
      username: c2cgisbot
      password: '1234'
      url: docker.io
    ghcr.io:
      externalEmail: ghcr-email
      externalUsername: ghcr-username
      externalPassword: ghcr-password
      externalUrl: ghcr-url

The docker.io is directly provided, ghcr.io throw the external secret, all combinations are allowed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Example: External secret

Clone this wiki locally