6 Accessing cloud secrets stores

This chapter covers

  • Using the Container Storage Interface (CSI) and the Secrets Store CSI Driver to inject secrets as volumes from cloud secrets stores
  • Populating cloud secrets into Kubernetes clusters as Kubernetes Secrets
  • Using auto rotation of secrets in the Secret Storage CSI Driver to improve security posture
  • Consuming sensitive information from cloud secrets stores

Chapter 5 introduced HashiCorp Vault, which can be used for securely storing and managing sensitive assets for applications deployed to Kubernetes and demonstrated how both applications and Vault can be configured to provide seamless integration with one another. This chapter expands the idea introduced in the previous chapter of using an external ...

Get Kubernetes Secrets Management now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.