Sealed Secrets

A kubernetes controller and tool for one-way encrypted secrets

Create a Civo Kubernetes cluster

Version: v0.26.2
Website: https://github.com/bitnami-labs/sealed-secrets
Maintainer: @milindchawre
Category: Architecture

sealed-secrets - a Kubernetes controller and tool for one-way encrypted Secrets

Client installation

Install the kubeseal CLI by downloading the binary from sealed-secrets/releases

Usage

# Create a json/yaml-encoded Secret somehow:
# (note use of `--dry-run` - this is just a local file!)
echo -n bar | kubectl create secret generic mysecret --dry-run=client --from-file=foo=/dev/stdin -o json >mysecret.json

# This is the important bit:
# (note default format is json!)
kubeseal -f mysecret.json -w mysealedsecret.json

# At this point mysealedsecret.json is safe to upload to Github,
# post on Twitter, etc.

# Eventually:
kubectl create -f mysealedsecret.json

# Profit!
kubectl get secret mysecret

Official sealed-secret docs

Kubernetes

Compute

Load balancers

Databases

CivoStack Enterprise

Edge

Kubeflow as a Service BETA

Cloud GPU

Carbon neutral GPU

Startups

Small & mid-market

SaaS companies

CI / Testing

Move to Kubernetes

Case studies & testimonials

Learn

Blog

White papers

Documentation

Civo news

Meetups

Marketplace

Use Civo for your demos

Sealed Secrets

sealed-secrets - a Kubernetes controller and tool for one-way encrypted Secrets

Client installation

Usage