breezy-gold-44713
04/07/2020, 11:59 PMkubectl create secret tls myservice-tls --cert=myservice.cert.pem --key=myservice.key.pem --dry-run -o yaml
. I’ve tried manually constructing a TLS secret with the exact contents of the yaml file, but it doesn’t work for some reason. I feel like I must be missing something obvious, any insights?billowy-army-68599
const secret = new k8s.core.v1.Secret("secret", {
stringData: {
"tls.crt": fs.readFileSync("myservice.cert.pem").toString(),
"tls.key": fs.readFileSync("myservice.key.pem").toString(),
},
});
breezy-gold-44713
04/08/2020, 12:15 AMgorgeous-egg-16927
04/08/2020, 2:49 AMbreezy-gold-44713
04/08/2020, 7:40 PM$ base64 < myservice.cert.pem | pulumi config set --secret tls.crt
$ base64 < myservice.key.pem | pulumi config set --secret tls.key
const secretsName = `${serviceName}-secrets`;
const secrets = new k8s.core.v1.Secret(secretsName, {
metadata: {
name: secretsName,
namespace: "mynamespace"
},
type: "<http://kubernetes.io/tls|kubernetes.io/tls>",
data: {
"tls.crt" : Buffer.from(config.require("tls.crt")).toString(),
"tls.key" : Buffer.from(config.require("tls.key")).toString(),
},
});