Secrets diff

From UVOO Tech Wiki
Jump to navigation Jump to search

Secrets diff and create

if ! kubectl get secret netbox-tls -o yaml | grep -q "$(base64 < tls.crt)"; then
  kubectl delete secret netbox-tls --ignore-not-found
  kubectl create secret tls netbox-tls --cert=tls.crt --key=tls.key
fi


kubectl get secret netbox-tls -o yaml | diff - <(kubectl create secret tls netbox-tls --cert=tls.crt --key=tls.key --dry-run=client -o yaml) || \
kubectl delete secret netbox-tls --ignore-not-found && \
kubectl create secret tls netbox-tls --cert=tls.crt --key=tls.key

netbox.secrets.yaml.tpl 

apiVersion: v1
kind: Secret
metadata:
  name: netbox-tls
type: kubernetes.io/tls
stringData:
  tls.crt: |
    {{ NETBOX_TLS_CRT | indent(4) }}
  tls.key: |
    {{ NETBOX_TLS_KEY | indent(4) }}

set -a NETBOX_TLS_CRT="..."
envtpl --keep-template netbox.secrets.yaml.tpl
Retrieved from "https://tech.uvoo.io/index.php?title=Secrets_diff&oldid=5505"