Our great sponsors
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
argocd-vault-plugin
An Argo CD plugin to retrieve secrets from Secret Management tools and inject them into Kubernetes secrets
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
store secrets encrypted in the public git repo (e.g., sealed-secrets)
store secrets encrypted in a separately managed secret database (e.g., vault)
argoproj-labs/argocd-vault-plugin
sops
git-crypt
Yes. I personally use Kustomize overlays. Here is an contrived example with 10+ envs https://github.com/kostis-codefresh/gitops-environment-promotion/tree/main/envs
For home use, I wouldn't bother with Vault unless that's really what you want to learn. Then it's worth looking into setting something up where you could use vault secrets, using one of the available options (I haven't seen the vault-secrets-operator being mentioned).
I use sops with age for my local k3s at home. Take a look here: https://github.com/slowr/rpi