stackoom
  简体   繁体   中英

Mount Kubernetes secret at pod runtime

 原文  2019-09-11 17:10:32       kubernetes/ kubernetes-secrets

Question

I have an optional secret volume defined in my StatefulSet like 

  - name: my-secret-volume
    secret:
      secretName: my-secret
      optional: true

And further, I mount it in my container. When I provision the pod, the secret does not exist yet.

Later, another service is installed on the cluster, which creates my-secret . Is there any way to mount that secret inside my pod where it was originally marked as optional, without having to restart the pod?

1 answers

solution1
 3 ACCPTED  2019-09-11 17:32:19

Apparently, mounted secrets are updated automatically. From https://kubernetes.io/docs/concepts/configuration/secret/#using-secrets :

When a secret being already consumed in a volume is updated, projected keys are eventually updated as well. Kubelet is checking whether the mounted secret is fresh on every periodic sync.

I have tested it manually, defined my-secret and it eventually (in under a minute) showed up in the mounted path, which was previously empty (before I created my-secret ).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Unable to mount Kubernetes Secret as a File in Pod How to mount a secret to kubernetes StatefulSet mount kubernetes ssh secret in container Unable to mount NFS on Kubernetes Pod How to mount a volume to a pod in Kubernetes Mount a local directory to kubernetes pod Unable to mount the volume to the pod in kubernetes Kubernetes: Unable to mount volumes for pod Kubernetes Unable to mount volumes for pod Kubernetes: Mount the pod filesystem with SSHFS?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM