radar231
/
k8s_pihole-2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

encrypted secrets data values with sops/age

This commit is contained in:
Radar231 2021-12-22 11:04:08 -05:00
parent 6b8e886622
commit 6d1625ca31
3 changed files with 34 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitignore vendored
View File

@ -1 +1 @@
*_secret.yml
pihole-2_secret.yml

33
pihole-2_secret.enc.yml Normal file
View File

@ -0,0 +1,33 @@
#############################################
# - creds for pihole-2
# - generate value using;
# echo -n '<text>' | base64
#############################################
apiVersion: v1
kind: Secret
metadata:
name: pihole-2-pass
data:
#ENC[AES256_GCM,data:EmWijYIxyu9bV6O6QUgWclC1WFoJfUQ3RZRtPw==,iv:9h6kl3e/S+bUwwCBrvPUo7jJVbzcMEMQTZdx+B9T36E=,tag:dSmty+1oRgf0KpVcMGlRMQ==,type:comment]
WEBPASSWORD: ENC[AES256_GCM,data:anXyoN2bN3vTwhTuTTvjqQ==,iv:8GuGgde/e9+lX/XHH5sO9BiLXOtr/xwUUlncGZAJRZY=,tag:zMgBb5/PmzAcz+g1Mh9xaw==,type:str]
# EOF
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age1x7aazmg26qf5vm7hnvxjqy77yvv5lc7jez7untjfnwrg8pa6aqysxlaa42
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBtSEhHUXZNZjZCNXp4dXVB
cmw1UU5mM1l5bVc1azFhRk0rbDNnQ3pHQWdrCmJiUFdpN0dlRkxMWng1TlRWVGIr
NXpPSVh6SjFoN1lrdVM1Sy9qU2FMaVkKLS0tIHlLQ1R1S0pIWkcrM0dEbWl2MnFn
QjBkUVNQUk8xNXo3YXZuZ2NNNGVpU2MKtsdtHq9dOUlthgE/hZ6i3GSFGgK6Bqxb
hvspH2wHSKPXVH/76BrVGSVE5YycEv9OllYULmg8i4JYeK9UDAbm6w==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2021-12-22T16:00:38Z"
mac: ENC[AES256_GCM,data:VmLXmaH54xgaFnRFUSjkRGj4ufQoU3E+tmLV9PjtQlTMy7hABhG4Gpioa048U2kOlzy8NdbEUePIlgBnFPzurjOQl0Agx+MYcfvhyhjiFRncb3PqcG4FIvo1DIyUGPnUucpDlI7caXSCI7TpumaNnMcbn2KtILvnIwOefKhjzFk=,iv:U4FAhrj54ggX+sQcF1hrM2ysr0Z2bkdP5WOu/BpGKG8=,tag:bySk5J5AGEOgZF9TLTo8eg==,type:str]
pgp: []
encrypted_regex: ^(data|stringData)$
version: 3.7.1

16
pihole-2_secret.yml.tmpl
View File

@ -1,16 +0,0 @@
---
#############################################
# - creds for pihole-2
# - generate value using;
# echo -n '<text>' | base64
#############################################
apiVersion: v1
kind: Secret
metadata:
name: pihole-2-pass
data:
# plaintext pw = "xxxxxxx"
WEBPASSWORD: xxxxxxx
# EOF