K
Q

How to inject secrets from vault to Kubernetes pods

2/5/2020

All,

I have all my secrets stored in vault. How can I fetch secrets from vault and inject them in pods.

Do I have to use a sidecard for it or there is some easiest way also .

-- cloudbud
hashicorp-vault
kubernetes

Similar Questions

Kubernetes Worker Node in Status NotReady after introducing a proxy in between worker node and control plane
Istio MultiCluster Network Policy
How Can I Expose to Outside My Services on Azure?
CrashLoopBackOff - Back-off restarting failed container

2 Answers

2/5/2020

The sidecar pattern is common with Kubernetes applications and can be applied to access secrets from Vault.

There is a great step by step walk through on hands-on-with-vault-on-kubernetes on git hub. This will answer all your basic questions on how to do this with example.

One more for your reference Injecting Vault Secrets Into Kubernetes Pods via a Sidecar

-- DT.
Source: StackOverflow
2/5/2020

There is one great project on Github Vault-CRD in java: https://github.com/DaspawnW/vault-crd

Vault CRD for sharing Vault Secrets with Kubernetes. It injects & sync values from Vault to Kubernetes secret. You can use these secrets as environment variables inside pod.

-- Harsh Manvar
Source: StackOverflow