Generate k8s secret Resource from vault entry using kustomize Exec KRM functions.
This plugin can insert credentials dynamically when kustomize build
.
Please install yq(go-yq) and vault.
# setup vault env var
export VAULT_ADDR='http://0.0.0.0:1234'
export VAULT_TOKEN=myroot
# write secrets to vault
# https://www.vaultproject.io/docs/commands/kv/put
vault kv put secret/pass passcode=my-long-passcode
vault kv put secret/addr email=my@www.example.com
# you can get secret from vault
# https://www.vaultproject.io/docs/commands/kv/get
vault kv get -field=passcode secret/pass
vault kv get -field=email secret/addr
$ kustomize build --enable-alpha-plugins --enable-exec example/