|
|
@@ -3955,6 +3955,8 @@
|
|
|
<input class="md-nav__toggle md-toggle" type="checkbox" id="__toc">
|
|
|
|
|
|
|
|
|
+
|
|
|
+
|
|
|
|
|
|
<label class="md-nav__link md-nav__link--active" for="__toc">
|
|
|
|
|
|
@@ -3997,6 +3999,8 @@
|
|
|
|
|
|
|
|
|
|
|
|
+
|
|
|
+
|
|
|
|
|
|
<label class="md-nav__title" for="__toc">
|
|
|
<span class="md-nav__icon md-icon"></span>
|
|
|
@@ -4005,18 +4009,6 @@
|
|
|
<ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
|
|
|
|
|
|
<li class="md-nav__item">
|
|
|
- <a href="#previder-secret-vault-manager" class="md-nav__link">
|
|
|
- <span class="md-ellipsis">
|
|
|
-
|
|
|
- Previder Secret Vault Manager
|
|
|
-
|
|
|
- </span>
|
|
|
- </a>
|
|
|
-
|
|
|
- <nav class="md-nav" aria-label="Previder Secret Vault Manager">
|
|
|
- <ul class="md-nav__list">
|
|
|
-
|
|
|
- <li class="md-nav__item">
|
|
|
<a href="#authentication" class="md-nav__link">
|
|
|
<span class="md-ellipsis">
|
|
|
|
|
|
@@ -4043,8 +4035,8 @@
|
|
|
</nav>
|
|
|
|
|
|
</li>
|
|
|
-
|
|
|
- <li class="md-nav__item">
|
|
|
+
|
|
|
+ <li class="md-nav__item">
|
|
|
<a href="#creating-external-secret" class="md-nav__link">
|
|
|
<span class="md-ellipsis">
|
|
|
|
|
|
@@ -4053,11 +4045,6 @@
|
|
|
</span>
|
|
|
</a>
|
|
|
|
|
|
-</li>
|
|
|
-
|
|
|
- </ul>
|
|
|
- </nav>
|
|
|
-
|
|
|
</li>
|
|
|
|
|
|
</ul>
|
|
|
@@ -4963,6 +4950,8 @@
|
|
|
|
|
|
|
|
|
|
|
|
+
|
|
|
+
|
|
|
|
|
|
<label class="md-nav__title" for="__toc">
|
|
|
<span class="md-nav__icon md-icon"></span>
|
|
|
@@ -4971,18 +4960,6 @@
|
|
|
<ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
|
|
|
|
|
|
<li class="md-nav__item">
|
|
|
- <a href="#previder-secret-vault-manager" class="md-nav__link">
|
|
|
- <span class="md-ellipsis">
|
|
|
-
|
|
|
- Previder Secret Vault Manager
|
|
|
-
|
|
|
- </span>
|
|
|
- </a>
|
|
|
-
|
|
|
- <nav class="md-nav" aria-label="Previder Secret Vault Manager">
|
|
|
- <ul class="md-nav__list">
|
|
|
-
|
|
|
- <li class="md-nav__item">
|
|
|
<a href="#authentication" class="md-nav__link">
|
|
|
<span class="md-ellipsis">
|
|
|
|
|
|
@@ -5009,8 +4986,8 @@
|
|
|
</nav>
|
|
|
|
|
|
</li>
|
|
|
-
|
|
|
- <li class="md-nav__item">
|
|
|
+
|
|
|
+ <li class="md-nav__item">
|
|
|
<a href="#creating-external-secret" class="md-nav__link">
|
|
|
<span class="md-ellipsis">
|
|
|
|
|
|
@@ -5019,11 +4996,6 @@
|
|
|
</span>
|
|
|
</a>
|
|
|
|
|
|
-</li>
|
|
|
-
|
|
|
- </ul>
|
|
|
- </nav>
|
|
|
-
|
|
|
</li>
|
|
|
|
|
|
</ul>
|
|
|
@@ -5046,15 +5018,13 @@
|
|
|
|
|
|
|
|
|
|
|
|
- <h1>Previder</h1>
|
|
|
-
|
|
|
<p><img alt="Previder Secret Vault" src="../../pictures/previder-provider.png" /></p>
|
|
|
-<h2 id="previder-secret-vault-manager">Previder Secret Vault Manager</h2>
|
|
|
+<h1 id="previder-secret-vault-manager">Previder Secret Vault Manager</h1>
|
|
|
<p>External Secrets Operator integrates with <a href="https://vault.previder.io">Previder Secrets Vault</a> for secure secret management.</p>
|
|
|
-<h3 id="authentication">Authentication</h3>
|
|
|
+<h2 id="authentication">Authentication</h2>
|
|
|
<p>We support Access Token authentication using a Secrets Vault ReadWrite or ReadOnly token.</p>
|
|
|
<p>This token can be created with the <a href="https://github.com/previder/vault-cli">vault-cli</a> using an Environment token which can be acquired via the <a href="https://portal.previder.nl">Previder Portal</a>.</p>
|
|
|
-<h4 id="access-token-authentication">Access Token authentication</h4>
|
|
|
+<h3 id="access-token-authentication">Access Token authentication</h3>
|
|
|
<p>To use the access token, first create it as a regular Kubernetes Secret and then associate it with the Previder Secret Store.</p>
|
|
|
<div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">v1</span>
|
|
|
<span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">Secret</span>
|
|
|
@@ -5076,7 +5046,7 @@
|
|
|
<span class="w"> </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">previder-vault-sample-secret</span>
|
|
|
<span class="w"> </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">previder-vault-token</span>
|
|
|
</code></pre></div>
|
|
|
-<h3 id="creating-external-secret">Creating external secret</h3>
|
|
|
+<h2 id="creating-external-secret">Creating external secret</h2>
|
|
|
<p>To create a kubernetes secret from the Previder Secret Vault, create an ExternalSecret with a reference to a Vault secret.</p>
|
|
|
<div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1</span>
|
|
|
<span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">ExternalSecret</span>
|