Helm/Vault: Difference between revisions

Revision as of 06:55, 19 January 2026

helm repo add hashicorp https://helm.releases.hashicorp.com helm repo update && helm repo list kubectl config get-contexts

Helm » Context

export KUBECONFIG="${HOME}/.kube/aws-kubeconfig.yaml"
export KUBECONFIG="${HOME}/.kube/dev-kubeconfig.yaml"
export KUBECONFIG="${HOME}/.kube/gcp-kubeconfig.yaml"
export KUBECONFIG="${HOME}/.kube/config"

cat <<'EXE'| sudo bash
    mkdir -p       /var/minikube/pvc/vault/data-vault-0/
chown -R 1001:1001 /var/minikube/pvc/vault/
EXE

Helm » Install

Helm » Install
helm show values hashicorp/vault --version=0.30.1\|less helm show values hashicorp/vault --version=0.31.0\|less
export KUBECONFIG="${HOME}/.kube/shahed-ab-kubeconfig.yaml" kubectl create ns vault \|\| true	kubectl get ns\|grep vault kubectl delete ns vault \|\| true
Skipped » Find More 👉 Storage » Mount Skipped » Find More 👉 Storage » Class » Hostpath Skipped » Find More 👉 Storage » Persistent Volume
cat <<'YML'\| \ kubectl apply -f - --- apiVersion: v1 kind: PersistentVolume metadata: name: vault-data-vault-0 spec: capacity: storage: 1Gi accessModes: - ReadWriteOnce persistentVolumeReclaimPolicy: Retain storageClassName: hostpath hostPath: path: /var/hostpath_pv/vault/data-vault-0 type: DirectoryOrCreate YML	cat << YML \| \ kubectl apply -f - --- apiVersion: v1 kind: PersistentVolumeClaim metadata: labels: app.kubernetes.io/name: vault name: data-vault-0 namespace: vault spec: accessModes: - ReadWriteOnce resources: requests: storage: 1Gi storageClassName: hostpath volumeName: vault-data-vault-0 YML
cat <<'YML' \| \ helm -n=vault upgrade -i vault hashicorp/vault --version=0.31.0 -f - --- global: enabled: true injector: replicas: 1 image: repository: hashicorp/vault-k8s tag: 1.7.0 agentImage: repository: hashicorp/vault tag: 1.20.1 server: image: repository: hashicorp/vault tag: 1.20.1 resources: requests: memory: 256Mi cpu: 250m limits: memory: 256Mi cpu: 250m ingress: enabled: true annotations: kubernetes.io/ingress.class: nginx kubernetes.io/tls-acme: "false" ingressClassName: nginx hosts: - host: vault.shahed.biz.ops dataStorage: size: 10Gi enabled: true storageClass: standard dev: enabled: false ui: enabled: true serviceType: ClusterIP YML
telnet vault.shahed.biz.ops 443 setsid open https://vault.shahed.biz.ops >/dev/null 2>&1 &

References

References
Helm » Pass YAML/JSON using `stdin` Helm » Prometheus Stack Helm » Cert Manager Helm » Harbor Helm » Pi-Hole Helm » Vault Helm
K8s » Configure Service Accounts for Pods K8s » Restart Pods With Kubectl K8s » Interactive Pod K8s » Restart Pods Docker » Makefile Kubernetes Minikube Kubectl CURL K8s	K8s » `kubectl rollout` K8s » CSI Hostpath Driver Security » Password K8s » Storage K8s » Ingress K8s » Service K8s » Run MinIO CIDR UFW	Bind9 » Authoritative DNS Server Bind9 » Secondary DNS Server Minikube » Ingress DNS Minikube » Systemd Minikube » MetalLB Minikube » Registry Minikube » Tunnel Localtunnel ZA Proxy

Helm » Install
helm show values hashicorp/vault --version=0.30.1\|less helm show values hashicorp/vault --version=0.31.0\|less
export KUBECONFIG="${HOME}/.kube/shahed-ab-kubeconfig.yaml" kubectl create ns vault \|\| true	kubectl get ns\|grep vault kubectl delete ns vault \|\| true
Skipped » Find More 👉 Storage » Mount Skipped » Find More 👉 Storage » Class » Hostpath Skipped » Find More 👉 Storage » Persistent Volume
cat <<'YML'\| \ kubectl apply -f - --- apiVersion: v1 kind: PersistentVolume metadata: name: vault-data-vault-0 spec: capacity: storage: 1Gi accessModes: - ReadWriteOnce persistentVolumeReclaimPolicy: Retain storageClassName: hostpath hostPath: path: /var/hostpath_pv/vault/data-vault-0 type: DirectoryOrCreate YML	cat << YML \| \ kubectl apply -f - --- apiVersion: v1 kind: PersistentVolumeClaim metadata: labels: app.kubernetes.io/name: vault name: data-vault-0 namespace: vault spec: accessModes: - ReadWriteOnce resources: requests: storage: 1Gi storageClassName: hostpath volumeName: vault-data-vault-0 YML
cat <<'YML' \| \ helm -n=vault upgrade -i vault hashicorp/vault --version=0.31.0 -f - --- global: enabled: true injector: replicas: 1 image: repository: hashicorp/vault-k8s tag: 1.7.0 agentImage: repository: hashicorp/vault tag: 1.20.1 server: image: repository: hashicorp/vault tag: 1.20.1 resources: requests: memory: 256Mi cpu: 250m limits: memory: 256Mi cpu: 250m ingress: enabled: true annotations: kubernetes.io/ingress.class: nginx kubernetes.io/tls-acme: "false" ingressClassName: nginx hosts: - host: vault.shahed.biz.ops dataStorage: size: 10Gi enabled: true storageClass: standard dev: enabled: false ui: enabled: true serviceType: ClusterIP YML
telnet vault.shahed.biz.ops 443 setsid open https://vault.shahed.biz.ops >/dev/null 2>&1 &

@@ Line 113: / Line 113: @@
 helm -n=vault upgrade -i vault hashicorp/vault --version=0.31.0 -f -
 ---
+global:
+  enabled: true
+injector:
+  replicas: 1
+  image:
+    repository: hashicorp/vault-k8s
+    tag: 1.7.0
+  agentImage:
+    repository: hashicorp/vault
+    tag: 1.20.1
+server:
+  image:
+    repository: hashicorp/vault
+    tag: 1.20.1
+  resources:
+    requests:
+      memory: 256Mi
+      cpu: 250m
+    limits:
+      memory: 256Mi
+      cpu: 250m
+  ingress:
+    enabled: true
+    annotations:
+      kubernetes.io/ingress.class: nginx
+      kubernetes.io/tls-acme: "false"
+    ingressClassName: nginx
+    hosts:
+      - host: vault.shahed.biz.ops
+  dataStorage:
+    size: 10Gi
+    enabled: true
+    storageClass: standard
+  dev:
+    enabled: false
+ui:
+  enabled: true
+  serviceType: ClusterIP
 YML
 </syntaxhighlight>

Helm/Vault: Difference between revisions

Revision as of 06:55, 19 January 2026

Helm » Context

Helm » Install

References

Navigation menu

Search