kubernetes-secret-generator
kubernetes-replicator
Our great sponsors
kubernetes-secret-generator | kubernetes-replicator | |
---|---|---|
1 | 3 | |
313 | 803 | |
3.8% | 3.2% | |
3.3 | 6.2 | |
17 days ago | 10 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
kubernetes-secret-generator
-
Best solution to use Argocd with helm and manage secrets ? Don't say flux !
If your secret are not necessarily to be known prior deployment I use this plugin https://github.com/mittwald/kubernetes-secret-generator
kubernetes-replicator
-
What if your Pods need to trust self-signed certificates?
I've built a small MutatingAdmissionWebhook controller [0] that handles this, via a pod annotation whose value is a secret with `ca.crt` inside, and it uses the (mostly) de facto standard openssl variables to configure the libraries, so that it works across pretty much everything I've tried it with off the shelf.
I build a bundle (though I may just move to trust-manager [1]) and replicate it into all namespaces with kubernetes-replicator [2], and then I can annotate any pod with
[0] https://github.com/microcumulus/ca-injector
[1] https://github.com/cert-manager/trust-manager
[2] https://github.com/mittwald/kubernetes-replicator
-
To anyone hosting in Kubernetes: Do you put all of your apps in one namespace (e.g., default), or one app per namespace?
Whichever way you go, I’ve successfully used this to replicate secrets: https://github.com/mittwald/kubernetes-replicator
- GitHub - mittwald/kubernetes-replicator: Kubernetes controller for synchronizing secrets & config maps across namespaces
What are some alternatives?
argocd-lovely-plugin - A plugin to make Argo CD behave like we'd like.
KubernetesCRDOperator - A sample about Kubernetes controller which can work with CRD to implement Operator pattern.
argocd-vault-plugin - An Argo CD plugin to retrieve secrets from Secret Management tools and inject them into Kubernetes secrets
aws-cloud-map-mcs-controller-for-k8s - K8s controller implementing Multi-Cluster Services API based on AWS Cloud Map.
secrets-manager - A daemon to sync Vault secrets to Kubernetes secrets
kubed - 🛡️ Kubernetes Config Syncer (previously kubed) [Moved to: https://github.com/kubeops/config-syncer]
config-syncer - 🛡️ Kubernetes Config Syncer (previously kubed)
sealed-secrets - A Kubernetes controller and tool for one-way encrypted Secrets
k8tz - Kubernetes admission controller and a CLI tool to inject timezones into Pods and CronJobs
kube-httpcache - Varnish Reverse Proxy on Kubernetes
trust-manager - trust-manager is an operator for distributing trust bundles across a Kubernetes cluster.
ca-injector - Painlessly use off-the-shelf images (and your own) in your k8s cluster, with custom root CAs.