At Soluto, we're using Kubernetes platform in production for more than a year. One of the challenges we faced is secrets management, which is not a...
For further actions, you may consider blocking this person and/or reporting abuse
Hmm.. :) interesting!
Let me take a peek at it and let you know how it goes. By the way, we are kind of riding the same boat however sealed secrets is least amount of effort atm.
Have you tried anything like Vault etc?
Sealed secret solved the problem in a different way. It let you create encrypted Kubernetes secrets, which has a few downsides:
config.secrets.json
. The value is base64 encoded value of the JSON, and modifying it is a cumbersome process. Kamus supports native JSON file, where you can encrypt only the values.One last comment regarding Vault. Vault has 2 options: