K8s/Secret

From Chorke Wiki
Revision as of 06:50, 10 July 2025 by Shahed (talk | contribs) (Created page with "==K8s » Secret » Usages== {|class='wikitable mw-collapsible' !scope='col' colspan='2' style='width:1000px'| K8s » Secret » Usages |- |valign='top'| <syntaxhighlight lang="yaml"> cat <<'YML'| kubectl apply -n academia -f - --- apiVersion: v1 kind: ConfigMap metadata: name: minio data: v4auth: true pathstyle: true region: us-east-1 bucket: gitlab-registry accesskey: Tnen3kCv71osfJKkhcIP regionendpoint: "http://minio.minio:9000" --- apiVersion: v1 kind: S...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

K8s » Secret » Usages

K8s » Secret » Usages 

cat <<'YML'| kubectl apply -n academia -f -
---
apiVersion: v1
kind: ConfigMap
metadata:
  name: minio
data:
  v4auth: true
  pathstyle: true
  region: us-east-1
  bucket: gitlab-registry
  accesskey: Tnen3kCv71osfJKkhcIP
  regionendpoint: "http://minio.minio:9000"

---
apiVersion: v1
kind: Secret
metadata:
  name: mariadb
type: Opaque
data:
  mariadb-replication-password: sadaqah!
  mariadb-root-password: sadaqah!
  mariadb-password: sadaqah!

---
apiVersion: v1
kind: Secret
metadata:
  name: postgresql
type: Opaque
data:
  replication-password: sadaqah!
  postgres-password: sadaqah!
  password: sadaqah!

---
apiVersion: v1
kind: Secret
metadata:
  name: certificate
type: Opaque
data:
  challenge-password: sadaqah!
  rootca-pass-phrase: sadaqah!
  subca-pass-phrase: sadaqah!
YML

cat <<'YML'| kubectl apply -n academia -f -
---
apiVersion: v1
kind: Pod
metadata:
  name: academia
spec:
  containers:
  - name: academia
    image: harbor.shahed.biz/academia/nginx:latest
    env:
      - name: MYSQL_PWD
        valueFrom:
          secretKeyRef:
            name: mariadb
            key: mariadb-password
      - name: PGPASSWORD
        valueFrom:
          secretKeyRef:
            name: postgresql
            key: password
      - name: ROOTCA_PASS_PHRASE
        valueFrom:
          secretKeyRef:
            name: certificate
            key: rootca-pass-phrase
      - name: SUBCA_PASS_PHRASE
        valueFrom:
          secretKeyRef:
            name: certificate
            key: subca-pass-phrase
      - name: S3_BUCKET
        valueFrom:
          configMapKeyRef:
            name: minio
            key: bucket
      - name: S3_REGION
        valueFrom:
          configMapKeyRef:
            name: minio
            key: region
    envFrom:
      - secretRef:
          name: academia
      - configMapRef:
          name: academia
YML

References

Retrieved from "https://wiki.chorke.org/index.php?title=K8s/Secret&oldid=15306"