Kubernetes Secrets Operations: Difference between revisions
Jump to navigation
Jump to search
| Line 22: | Line 22: | ||
kubectl create secret generic username-and-password --from-file=./username.txt --from-file=./password.txt | kubectl create secret generic username-and-password --from-file=./username.txt --from-file=./password.txt | ||
This will create the following secret: | |||
<syntaxhighlight lang='text'> | |||
Name: username-and-password | |||
Namespace: test | |||
Labels: <none> | |||
Annotations: <none> | |||
Type: Opaque | |||
Data | |||
==== | |||
password.txt: 17 bytes | |||
username.txt: 9 bytes | |||
</syntaxhighlight> | |||
===Special Character Handling=== | ===Special Character Handling=== | ||
Revision as of 17:18, 22 August 2019
Internal
Inspecting Secrets
kubectl get secrets
kubectl describe secret secret-name
Create a Secret
With kubectl CLI
Declare the secret content in one (or more) file(s) on the local filesystem. When the secret is exposed to a pod, the content will be available as volume files with the same name.
echo -n "test-user" > ./username.txt echo -p "test-password" > ./password.txt
kubectl create secret generic username-and-password --from-file=./username.txt --from-file=./password.txt
This will create the following secret:
Name: username-and-password
Namespace: test
Labels: <none>
Annotations: <none>
Type: Opaque
Data
====
password.txt: 17 bytes
username.txt: 9 bytes
Special Character Handling
Special characters such as '$', '*' and '!' require escaping (\).