Kubernetes Secret management

abhinavisin · July 5, 2020, 3:34am

Asking for help? Comment out what you need so we can get more information to help you!

Cluster information:

Kubernetes version:v1.14.6
Cloud being used: bare-metal
Installation method:VmWare
Host OS: Ubuntu
CNI and version:Calico 18.09.9
CRI and version:

Hi All,
Secrete keys volume mounted on POD causes following behavior -

add/delete of a secret causes restart
modify of secret update on pod without restart

Is there a way secrete add/delete avoids a POD restart? Additionally, what is the recommended behavior for secrete mgmt?

Thanks
Kumar

abhinavisin · July 5, 2020, 3:42am

If add and delete always requires POD restart due to contract of mounting volume first and then deploying containers. Then is it a better practice to perform POD restart for updates too which decouples POD application from implementing secret mgmt logic in application.

Topic		Replies	Views
Kubernetes updates the data in the volume, using an eventually-consistent approach General Discussions	0	1386	May 20, 2022
Updating Secret from Pod General Discussions	1	8932	June 20, 2019
Issue with Secret Not Updating on All Pods After Time Shift (+10 Years) General Discussions	0	14	October 31, 2024
Encryption of secrets in yaml files General Discussions	2	735	August 9, 2024
How to secure Kubernetes secrets on bare metal? General Discussions security , on-prem	1	1290	February 24, 2023

Kubernetes Secret management

Cluster information:

Related topics