Last active
June 6, 2020 14:07
-
-
Save Jagdeep1/db2bf1261ed224c7df6e83bbf436112c to your computer and use it in GitHub Desktop.
Provider class for secret store
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
apiVersion: secrets-store.csi.x-k8s.io/v1alpha1 | |
kind: SecretProviderClass | |
metadata: | |
name: azure-kv-provider | |
spec: | |
provider: azure | |
parameters: | |
usePodIdentity: "false" # We will not use pod identity for this example. We will use SP | |
keyvaultName: "db-keys" # This is the name of KeyVault resource that we created in previous step | |
cloudName: "AzurePublicCloud" | |
objects: | | |
array: | |
- | | |
objectName: db-username | |
objectType: secret # object types: secret, key or cert | |
objectVersion: "" | |
- | | |
objectName: db-password | |
objectType: secret | |
objectVersion: "" | |
resourceGroup: "$RG-NAME" # Resource goup that you have used to create KeyVault | |
subscriptionId: "$SUBSCRIPTION-ID" | |
tenantId: "$TENANT-ID" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment