· 4 years ago · Aug 19, 2021, 12:06 PM
1$ cat spc-vault-database.yaml
2apiVersion: secrets-store.csi.x-k8s.io/v1alpha1
3kind: SecretProviderClass
4metadata:
5 name: vault-database
6spec:
7 provider: vault
8 parameters:
9 roleName: "database"
10 vaultAddress: "https://vault-0.mydomain:8201"
11 vaultNamespace: "vault"
12 vaultCACertPath: "/vault/tls/ca.crt"
13 vaultTLSClientCertPath: "/vault/tls/tls.crt"
14 vaultTLSClientKeyPath: "/vault/tls/tls.key"
15 objects: |
16 - objectName: "db-password"
17 secretPath: "secret/data/db-pass"
18 secretKey: "password"
19