New sealed secret

This commit is contained in:
Kasper Juul Hermansen 2022-05-08 22:59:29 +02:00
parent 23eaa48c32
commit d9400ea147
Signed by: kjuulh
GPG Key ID: 0F95C140730F2F23
2 changed files with 20 additions and 2 deletions

View File

@ -6,8 +6,7 @@ metadata:
namespace: cert-manager namespace: cert-manager
spec: spec:
encryptedData: encryptedData:
api-token: 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 api-token: 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
zone-id: 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
template: template:
data: null data: null
metadata: metadata:

View File

@ -0,0 +1,19 @@
#!/bin/bash
echo "Encrypt secret with 'sealed-secrets'"
kubectl -n default create secret generic cloudflare-api-token-secret \
--from-literal=api-token="$1" \
--namespace="cert-manager" \
--dry-run=client \
-o yaml > cloudflare-secret.yaml
echo "secret: $1"
kubeseal --format=yaml \
< cloudflare-secret.yaml > cloudflare-secret.sealed.yaml
echo "Updated/created secret"
rm cloudflare-secret.yaml