DAY-41 | KUBERNETES LIVE PROJECT | CONFIGMAPS & SECRETS | HOW TO USE CONFIGMAPS & SECRETS INSIDE POD
HTML-код
- Опубликовано: 14 мар 2023
- Support my work
www.buymeacoffee.com/abhishekprd FREE DEVOPS COURSE
• DEVOPS ZERO TO HERO CO...
Hi Everyone, Today is Day-41 of our complete DevOps course and in this video, we will learn about Kubernetes ConfigMaps and Secrets using a Live Project.
We will learn,
1. What is a Kubernetes ConfigMap ?
2. What is a Kubernetes Secret ?
3. Difference between ConfigMap & Secret ?
4. How to use ConfigMap data as ENV Vars inside a Django Python Container ?
5. How to use Configmap data as Volume Mount file inside a Django Python container App ?
6. What are the advantages of using a Volume Mount over Env var for reading ConfigMap in Kubernetes ?
7. Interview Questions related to Secrets in Kubernetes ?
8. Much more.
Kubernetes Secrets Assignment Reference:
===================================
www.containiq.com/post/kubern...
Telegram channel
===============
telegram.me/abhishekveeramalla
About me:
-----------------
LinkedIn: / abhishek-veeramalla-77...
GitHub: github.com/iam-veeramalla
Medium: / abhishekveeramalla-av
RUclips: / @abhishekveeramalla .
.
Disclaimer: Unauthorized copying, reproduction, or distribution of this video content, in whole or in part, is strictly prohibited. Any attempt to upload, share, or use this content for commercial or non-commercial purposes without explicit permission from the owner will be subject to legal action. All rights reserved. - Развлечения
Hi Abhishek, before watching your videos, the concepts looks like a huge mountain, but your video makes that into dust particles, as if nothing is there in it. Clear explanations, precise things, what more to say.... you are really awesome.... Thankyou so much for your contribution to the community... Hatsoff....
Thanks a ton
I am so proud to have an online teacher like you. You are really changing me in person.
Hi sir, you are an angel teacher, i always remember the quotes that showed on of your reels "sharing knowledge is a blessing "
every time when we watch your videos you get a blessing sir. thankyou sir
Abhishek is an outstanding teacher
Hi Abhishek, Before watching your video i had gone through many instrcators who are provding the Devops or kubernects concepts. But i must say your way of explaining the concept is totally different . its really touching directly to the heart and mind. Easy to understand the concepts and practial. clear explanation the things to make easy.. Thank you so much abhishek. Now i am a big fan'''
15:50 we use kubectl apply... over kuberctl create...
Because when apply cmd is used, we can simply kubectl edit... the concerned files, without applying again.
In kubectl create..., you can't use use kubectl edit, you need to manually change the YAML and and create again.
When we use "kubectl create", it creates a new resource based on the provided configuration file.If the resource already exists, kubectl create will return an error, indicating that the resource already exists.
It's typically used for creating resources that don't already exist in the cluster.
"kubectl apply" is used to create or update resources based on the provided configuration file. If the resource already exists, kubectl apply will update the existing resource with the new configuration. kubectl apply is idempotent, i.e., we can apply the same configuration multiple times, and it will ensure that the resource is in the desired state. It's commonly used for both creating new resources and updating existing ones.
I think this clarifies well😊
@@Tagore-lv1wc Thanks
I have to mention that, this is a master class to learn about ConfigMap and Secret for K8S. Gain Clear cut concept. Thank you Abhishek Sir.
Thanks alot 🙏
This is perfect explaination!
Thank you once again great man. my biggest fear before i encountered your channel use to be an interviewer asking me to write out syntax from memory. You definitely put that fear to bed.
Happy to help!
Excellent..nothing can be better than this on config map and secret 🎉🎉
Yes, true
You’re the best. I am confident now to apply for interviews and switch my current job ❤
Thank you so much!!! It's all making sense now!
❤️
I love the way you explain the concepts. Thanks
So much info you provided in this video. Thanks a lot Sir
Thanks alot
your explanation is top notch and you dont miss the small important details thats why i watch devops related content only from this channel.Keep it up!!
Excellent class about config map and secrets. I saw other tutorials but have not clarity of explanation. We appreciate your support towards us and thanks Abhishek
Thanks alot
Great Stuff. Thank you for your efforts.
Glad you like them! Please share the channel with others
Awesome video ❤
Great explanation Abhishek
simply wow.
Thanks alot
Crystal clear explanation... liked it Bro
Awesome 😎
Hi Abhishek I will completely my devops journey thru u ❤
Great 👍
I laughed when you said "I know you wouldn't believe" when it took time to show 3309 port😂Even you cracked up. Thankyou for this session once again Abhishek and Congratulations on the Silver Button!🎉
😊😊
Thanks bro
I have been working on k8s without knowing why exactly I am using those. Really helpful
Awesome.. Thanks alot
very good explanation....thankyou Abhishek.
keep going on....... we will support you brother.
Thanks a ton
First comment
Thanks for making everything as planned
Thanks alot
Impeccable content once again. Im glad I met you.
😀
I feel like there's no one else, who has more knowledge than you on the subject. You're Awesome!!😍
Thanks alot sai
Hi abhishek, I'm following your channel and videos since 2 months. Very informative and clear explanation, which makes things easy for us. Can you do videos on Istio service mesh with practical example and storage's, volumes and what is helm? It would be great opportunity for us to learn about how they are used in real time
great stuff again :) thanks
My pleasure!
Good explanation
This video gonna help me a lot ❤
Awesome
Very helpful..👍👍
Thanks a lot
Thank You ❤
Awesome
Thanks !!
Thanks bro ❤
Welcome
Good explanation 😊
Thank you so much 😀
Good session
Thank you 💗
master in devops
Thanks ashwin
I made it to Day 41 🚀
Woah
Only 4.3k viewers are blessed one who have seen you video, feel bad for the rest who are following the other tutorials just for learning real time things. And they are getting fooled by them. Please raise the awareness of this channel.
Thanks alot Gaurav .. Very nice of you
@@AbhishekVeeramalla we must say thanks to you bhaiya.
@Abhishek plz make videos on statefulsets and persistent volumes
Noted
To change the configmp value on running container, use volume mounting s file instead of environment variables
Please do a master classes bro like end to end of devops with one cloud and finally we want expecting job ready classes(like shubham bro)
Hi Satya , Thanks for the comment .. This 45 days course is same bro .. Please watch all the videos
Hi Abhishek, awesome stuff thanks for sharing.
One doubt if we need to load multiple secret files to docker container path using helm, what will be deployment and secret yml file changes.
Thanks again.
Regards,
Sri Sai
Both are used to pass information to pod in form of environment variables or mounted as file
Loved the humor at 33:00😂
Haha 😂
Bro please do video on Scenario based interview questions on each tool.
noted
Hi Bro
What is the difference between CKAD and CKA?
As a Devops engineer which one suits me the best?
Hi abhishek, i want to know if there are necessary to remember the installation processes for any resources or services, or i can simply use ChatGPT or specific documentation files for reference. and thank you so much for this awesome content.
Configmap is used to store data , this data can be later used by containerised application as environment variables or fileas volume mount
Done with Day 41✌
Hi Abhishek, Thanks for the crystal clear explanation,I have one doubt: Secrets will do encryption of data or just base64 encoding, I have read somewhere that it is encoding the data but not encryption. Can you clarify on this..
Yes. . just base64 encryption on the secrets level .. which is very simple to debug for anyone . It also gets encrypted at the etcd
Secrets is used to do the same for sensitive data in encrypted way😅😅. Good practice is to make a strong rbac policy for devops engineer to limit access to secret
Bro please make a detailed video on AKS Auto scaling .
I will try my best
Hi abishek ..whether we have to do terraform zero to hero or the terraform in this devops course itself enough to land a job? And also i certified cloud practitioner so i could skip aws 0 to hero and can learn only tis devops course
Thanks, Very informative.. Where to keep this secret yml file, i hope we shouldnt keep it in github.. Then how CD pipeline will get this secret value, please explain
First comment
Waiting for this ❤
❤️
Can we use Azure Container registry to store sensitive info of POD
There are no volume and statefukset concept Abhishek please do vidios
Hi Abhishek, If we use configmap as env variables, developers will use directly from it. How will they utilise the values if we attach cm as volume mounts?? Is it by reading the value in those particular files ??
Yes .. perfect
Thank you Abhishek.
Don't mind, I am just asking in curiosity.
If I have configured this DB_PORT as volume mounts and we should use it as below right ?
DB_PORT=$(cat /opt/db-port | more)
5:15
Hi @AbhishekVeeramalla "Unable to use a TTY - input is not a terminal or the right kind of file" -- I'm getting this error again and again on windows using git bash I tried every solution, but it didn't work. I'm unable to exec the pod ... please guide.
can you please confirm? data in secrets is base64 encoded and not encrypted
I have one simple question
If we use volumeMount how developers will fetch the value for application ?
Is this the way
secret_file_path = "/path/to/mounted/secrets/mysecret.txt"
with open(secret_file_path, 'r') as file:
secret_value = file.read()
Hi Abhishek, How can we reach in telegram and the expertise to post and interact on the k8s
Hi bro,
By default k8s provides base-64 encoding, how its secure way to store sensitive information. becoz hackers are decode base-64 encoding. pls tell me
You can encrypt etcd at rest
I am trying to doing same way however I am getting error as error: Environment variable not found: how to fix this issue I followed all step
I am unable to exec the pod getting "OCI runtime exec failed" Command terminated with exit code 126
Someone please help
anyone can help me please. I don't know where I am doing mistake. I can not create deployment, after create volumes and volumemount.
apiVersion: apps/v1
kind: Deployment
metadata:
name: nginx-new
labels:
app: nginx
spec:
replicas: 3
selector:
matchLabels:
app: nginx
template:
metadata:
labels:
app: nginx
spec:
containers:
- name: nginx
image: nginx:1.14.2
volumeMounts:
- name: db-new
mountPath: /opt
volumes:
- name: db-new
configMap:
name: db-test
ports:
- containerPort: 80
~
22nd Feb, 2024
Abhishek sir thank you for your valuable time hope you doing well
Once I want to meet you please put insta story when you coming to Bangalore
Sure I will