am using hashicorp vault(I am using their hosted service) to store application secrets.
I have a mutating webhook that looks for references to secrets in the vault and a vault-env container which injects these secrets into the application.
This is all based on the blog post here, https://banzaicloud.com/blog/inject-secrets-into-pods-vault-revisited/
But in that blog post, They create a vault instance in the k8s cluster and use that. My query is, How do I do the same thing with hashicorp's hosted service?
Right now, I am stuck on authentication. IIUC, In the blog post, They are authenticating with TLS certificates?
Can you check hashicorp's site
Yes, I have. They have a kubernetes auth option but it needs a CA certificate? I was trying to figure out the way to get that
Обсуждают сегодня