8 Managing Secrets

Everyone has secrets, and Kubernetes clusters are no different. Secrets can be used to store credentials for connecting to databases, private keys for encryption or authentication, or anything else that’s deemed confidential. In this chapter, we’ll explore why secret data has to be handled differently than other configuration data, how to model threats against your cluster’s secrets, and different ways to integrate external secret managers into your clusters.

In Chapter 6, Integrating Authentication into Your Cluster, we created some secrets for OpenUnison. These Secrets were simple Kubernetes objects and weren’t treated any differently then we’d treat other configuration data. This makes it difficult to follow common enterprise ...

Get Kubernetes – An Enterprise Guide - Third Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Kubernetes – An Enterprise Guide - Third Edition by Marc Boorshtein, Scott Surovich

8

Managing Secrets

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly