I hereby claim:
- I am torresdal on github.
- I am torresdal (https://keybase.io/torresdal) on keybase.
- I have a public key ASCdFu6R4nM6MPD28vg1-kc3r91QVnOh0qOSOZX5t3rtawo
To claim this, I am signing this object:
I hereby claim:
To claim this, I am signing this object:
version: 2 | |
jobs: | |
build_docker: | |
docker: | |
- image: docker:18.09-git | |
working_directory: /build | |
steps: | |
- checkout | |
- setup_remote_docker: | |
docker_layer_caching: true |
apiVersion: apps/v1 | |
kind: Deployment | |
metadata: | |
name: customer | |
namespace: customer | |
labels: | |
app: customer | |
annotations: | |
flux.weave.works/automated: 'true' | |
spec: |
... | |
containers: | |
- name: alpine | |
env: | |
- name: MY_PUBLIC_KEY | |
value: my-first-azure-keyvault-certificate@azurekeyvault?tls.crt | |
- name: MY_PRIVATE_KEY | |
value: my-first-azure-keyvault-certificate@azurekeyvault?tls.key | |
... |
apiVersion: spv.no/v1alpha1 | |
kind: AzureKeyVaultSecret | |
metadata: | |
name: my-first-azure-keyvault-certificate | |
namespace: default | |
spec: | |
vault: | |
name: my-kv | |
object: | |
type: certificate |
apiVersion: v1 | |
data: | |
tls.crt: ... | |
tls.key: ... | |
kind: Secret | |
metadata: | |
name: keyvault-certificate | |
namespace: default | |
type: kubernetes.io/tls |
apiVersion: spv.no/v1alpha1 | |
kind: AzureKeyVaultSecret | |
metadata: | |
name: my-first-azure-keyvault-certificate | |
namespace: default | |
spec: | |
vault: | |
name: my-kv | |
object: | |
type: certificate |
... | |
spec: | |
containers: | |
env: | |
- name: MY_SECRET | |
value: my-secret-from-azure@azurekeyvault | |
... |
# env | |
KUBERNETES_PORT=443 | |
KUBERNETES_SERVICE_PORT=443 | |
HOSTNAME=my-pod-77cb7d647–9zftg | |
… | |
MY_SECRET=my-secret-from-azure@azurekeyvault | |
… |