Hey everyone! I'm trying to streamline the process of managing secrets for Kubernetes clusters. Right now, every time we set up a new cluster for a client, we end up creating secrets like API keys and connection strings manually, which is super time-consuming. On release days, we also have to compare lower and upper environments manually to identify any new secrets.
We've developed a Golang app that generates secrets based on the context we provide, but there's still a bit of user input required via CLI to confirm certain secret types—like API keys that need to be specified instead of randomly generated. I'm looking for a more efficient way to handle this, ideally some kind of one-click solution. How do you manage secrets in your organizations? Thanks for your help!
3 Answers
How are you creating your clusters? Are you using tools like Ansible or Terraform? If you are using Terraform, consider integrating the Vault Operator and the Terraform provider for better management of secrets directly in your setup.
Have you looked into using External Secrets Operator (ESO)? It automates the generation and pushing of secrets, which could save you a lot of hassle.
Honestly, it sounds like you're making it more complicated than it needs to be. If you're using Terraform, you can set it up to use a central key rotation service like GitLab for managing states and secrets. It can streamline your process significantly!
Related Questions
How To: Running Codex CLI on Windows with Azure OpenAI
Set Wordpress Featured Image Using Javascript
How To Fix PHP Random Being The Same
Why no WebP Support with Wordpress
Replace Wordpress Cron With Linux Cron
Customize Yoast Canonical URL Programmatically