Manage Kubernetes Secrets with Mozilla SOPS & Flux 2 (with Leigh Capili)

Поделиться
HTML-код
  • Опубликовано: 22 дек 2024

Комментарии • 8

  • @mohammedrafaquat4797
    @mohammedrafaquat4797 3 года назад +2

    Hi Leigh did you manage to debug the issue you were having with sops edit ? Thanks in advance

    • @daveybrown1160
      @daveybrown1160 3 года назад

      Such suspense!!

    • @leighcapili6703
      @leighcapili6703 2 года назад +1

      I learned that access to the private is necessary for sops edit to decrypt values!
      sops edit doesn't support unencrypting some keys but not others.
      (I would be interested in this feature though)
      Instead, if you only have access to the public key, you can delete the old encrypted field and reprovision the password with sops --encrypt.
      This allows workflows where only the public key is available to developers.
      You can even add this to your Makefile to make it easy to rotate your db password (such as when somebody leaves your team to go to a different company)
      Sorry for the late response! Cool question

    • @leighcapili6703
      @leighcapili6703 2 года назад

      Easiest to ping me directly on twitter, the k8s slack, or the CNCF slack

  • @thailoitra6383
    @thailoitra6383 3 года назад

    Hi Leigh, what terminal are you using ? Is it light weight and fast ? Tyia.

    • @leighcapili6703
      @leighcapili6703 2 года назад

      Easiest to ping me directly on twitter, the k8s slack, or the CNCF slack

  • @just1689
    @just1689 3 года назад +1

    Leigh should have to do a rap at the startup of every video

    • @leighcapili6703
      @leighcapili6703 2 года назад

      Brainstorming for this upcoming year 🤔