Get full access to Learn OpenShift and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Secrets

Secrets are similar to config maps, which we discussed in the previous chapter, in that they are also used to pass data to pods, but that's where their similarities end. A secret's only use case is to store sensitive data consumed by applicationsâAPI tokens, credentials, X.509 certificates/keys, and so on. They are backed by tmpfs (an in-memory temporary filesystem) which prevents them from being stored on persistent storage. Secrets are different from config maps in the following ways:

Many secrets are created automatically on OpenShift startup (so that pods are able to access the OpenShift API and internal registry, for example)
Secret values are base64-encoded by default, which makes them impossible to see until they are injected ...

Get Learn OpenShift now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now