Expand description
kubevault is a tool to manage Kubernetes secrets and service accounts using a simple directory structure.
It is designed to be used with chezmoi.sh to manage the vault directory.
This library provides the core functionalities to generate Kubernetes manifests from the vault directory:
- Generate the Secret manifests from the kvstore directory (
generate_secret_manifests) - Generate the RBAC manifests for all the accounts in the access control directory (
generate_rbac_manifests) - Generate the list of secrets that are accessible by the given access rules (
get_access_control_list) - Enforce DNS1035 format for a string (
enforce_dns1035_format)
Functionsยง
- enforce_
dns1035_ format - Enforce DNS1035 format for a string
- get_
access_ control_ list - Generate the list of secrets that are accessible by the given access rules