These Kubernetes resource manifest yaml files demonstrate
vault.yaml
- setting up a test vault service
- configuring the vault service with kubernetes auth and a role for a test app
app.yaml
- running an app with a
vault-init
initContainer to login to vault and obtain a token - a
vault-secret-manager
container to continuously interact with vault throughout the lifecycle of the app - an
app
container to use the secret saved by thevault-secret-manager
container
Credit to https://medium.com/@gmaliar/dynamic-secrets-on-kubernetes-pods-using-vault-35d9094d169 for help on this.