[CKAD] Secret 생성 후 Pod 에 env 로 사용

k8s/CKAD

[CKAD] Secret 생성 후 Pod 에 env 로 사용

yechan93 2023. 12. 1. 17:01

조건

Secret Name : my-secret

Secret Key : MySecret

Secret Value : SecretValue

Pod Name : env-secret-pod

Pod Image : Nginx

1. Secret 생성

kubectl create secret generic my-secret --from-literal=MySecret=SecretValue

2. Pod 생성

apiVersion: v1
kind: Pod
metadata:
  name: env-secret-pod
spec:
  containers:
  - name: envars-secret-container
    image: nginx
    env:
    - name: SECRET_NAME
      valueFrom:
        secretKeyRef:
          name: my-secret
          key: MySecret

3. 결과 확인

kubectl exec env-secret-pod -- env

참고자료

https://kubernetes.io/docs/tasks/inject-data-application/distribute-credentials-secure/

Distribute Credentials Securely Using Secrets

This page shows how to securely inject sensitive data, such as passwords and encryption keys, into Pods. Before you begin You need to have a Kubernetes cluster, and the kubectl command-line tool must be configured to communicate with your cluster. It is re

kubernetes.io

https://kubernetes.io/docs/reference/generated/kubectl/kubectl-commands#-em-secret-generic-em-