This message was deleted.
# kubernetess
sparse-intern-71089
08/05/2020, 10:00 AMThis message was deleted.
p
proud-spoon-58287
08/05/2020, 10:01 AMand I need to replace USERNAME and PASSWORD 🙂
proud-spoon-58287
08/05/2020, 10:02 AMI work with Pulumi, and I can manipulate the yaml before getting deployed in order to replace USERNAME and PASSWORD with the right values.
proud-spoon-58287
08/05/2020, 10:03 AMwhat I do not like of my current implementation is that I am binded to this deployment structure and it is very inflexible
proud-spoon-58287
08/05/2020, 10:04 AMIs there a way to pass something link another yaml to the deployment file which contains the right values and reference those?
proud-spoon-58287
08/05/2020, 10:14 AM Copy code
valueFrom:
secretKeyRef:
key:proud-spoon-58287
08/05/2020, 10:15 AMcan I put the pulumi config key? 🙂
k
kind-mechanic-53546
08/05/2020, 11:56 AMCheck out this stack
kind-mechanic-53546
08/05/2020, 11:56 AMspecifically,
Copy code
// Create secret from MongoDB connection string.
const mongoConnStrings = new k8s.core.v1.Secret(
"mongo-secrets",
{
metadata: { name: "mongo-secrets", namespace: config.appsNamespaceName},
data: mongoHelpers.parseConnString(cosmosdb.connectionStrings),
},
{ provider },
);kind-mechanic-53546
08/05/2020, 11:57 AMand
Copy code
name: "WORDPRESS_DATABASE_PASSWORD",
valueFrom: {
secretKeyRef: {
name: mariadbSecret.metadata.name,
key: "mariadb-password"
}
}p
proud-spoon-58287
08/05/2020, 12:58 PMthanks @kind-mechanic-53546
proud-spoon-58287
08/05/2020, 1:53 PM@kind-mechanic-53546 This is all clear now thanks
proud-spoon-58287
08/05/2020, 1:53 PMonly thing I do not understand is this
proud-spoon-58287
08/05/2020, 1:53 PM Copy code
// Create a Secret with the database credentials.
const databaseSecret = new k8s.core.v1.Secret("db-secret", {
stringData: {
"database-username": config.databaseUsername,
"database-password": config.databasePassword,
}
}, { provider: provider });proud-spoon-58287
08/05/2020, 1:53 PMconfig.X
proud-spoon-58287
08/05/2020, 1:53 PMdoes not exists
proud-spoon-58287
08/05/2020, 1:53 PMbut I can do config.get(SECRET-KEY)
proud-spoon-58287
08/05/2020, 1:53 PMbut I got an error
proud-spoon-58287
08/05/2020, 1:53 PMcan you help?
proud-spoon-58287
08/05/2020, 1:54 PM Copy code
const config = new pulumi.Config();
const ksqlDbSecret = new k8s.core.v1.Secret("ksqldb-secret", {
stringData: {
'kafka-cluster-username': config.get('kafkaApiKey'),
'kafaka-cluster-password': config.get('kafkaApiSecret')
}
}, { provider: clusterProvider });proud-spoon-58287
08/05/2020, 1:54 PMthat has compilation errors
proud-spoon-58287
08/05/2020, 1:55 PM Copy code
'kafka-cluster-username': config.requireSecret('kafkaApiKey'),
'kafaka-cluster-password': config.requireSecret('kafkaApiSecret')proud-spoon-58287
08/05/2020, 1:55 PMthat sorts it 🙂
proud-spoon-58287
08/05/2020, 2:19 PM@kind-mechanic-53546 got another question
proud-spoon-58287
08/05/2020, 4:12 PM@billowy-army-68599 this does not work
proud-spoon-58287
08/05/2020, 4:12 PM Copy code
const config = new pulumi.Config();
const ksqlDbSecret = new k8s.core.v1.Secret("ksqldb-secret", {
stringData: {
'kafka-cluster-username': config.get('kafkaApiKey'),
'kafaka-cluster-password': config.get('kafkaApiSecret')
}
}, { provider: clusterProvider });proud-spoon-58287
08/05/2020, 4:13 PMpulumi asks me to set 'kafka-cluster-username' ...?
proud-spoon-58287
08/05/2020, 4:13 PMthought it is a key : value
b
billowy-army-68599
08/05/2020, 4:15 PM
can you show the error?
4 Views