How to Inject Secret From Google Secret Manager into Kubernetes Deployment?

This page summarizes the projects mentioned and recommended in the original post on /r/googlecloud
secrets-management Kubernetes Grafana google-cloud helm-charts

SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
surveyjs.io
featured
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

  • kubernetes-external-secrets

    Discontinued Integrate external secret management systems with Kubernetes

    • What is the best practice for injecting the secrets from Google Secret Manager into a Kubernetes deployment. I have stored the login credentials for my grafana & kibana instances into Google Secret Manager. Both of these instances were deployed using a helm chart on Google Kubernetes Engine. I know that one can use an init container in k8s to inject the secrets via environment variable and I read a bit about kubernetes external secrets, but I'm a little confused as to how to reference secrets stored in Google Secret Manager within the helm chart config itself. Has anyone successfully done this before? Would welcome any insight on best practice.

  • berglas

    A tool for managing secrets on Google Cloud

    • I'm using mutating webhooks and berglas for this. See more details at https://github.com/GoogleCloudPlatform/berglas/tree/main/examples/kubernetes

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo

  • helm-charts

    • Thanks u/Sparkyadm. This was helpful! I ended up using Berglas as well. I don't know how to inject the secret into the Grafana helm chart though. I tried adding it in the envs section, but it literally took in the secret manager path as the password rather the value being stored.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Query frontend for loki-stack

    2 projects | /r/kubernetes | 23 Aug 2022

  • Whats the deal with the Kubernetes Application sig? This just a Google thing? Does anyone use it?

    4 projects | /r/kubernetes | 13 Sep 2021

  • Multi-Cluster Prometheus: Scaling Metrics Across Kubernetes Clusters

    1 project | dev.to | 26 Jan 2024

  • How to deploy and manage a RabbitMQ cluster on Amazon EKS using Terraform and Helm

    1 project | dev.to | 16 Jan 2024

  • Hands On: Pull metrics into Kubernetes from anywhere and treat them generically with the Keptn Metrics Server

    1 project | dev.to | 2 Jan 2024