Secrets (Management on Kubernetes) can be Fun [Workshop]




  • All you need to follow along is a laptop with the Chrome browser!

The default Kubernetes secrets management uses base-64 encoding but it does not manage the lifecycle of sensitive data. How do we inject a secret from an external secrets manager into a Kubernetes application? In this workshop, we’ll cover some tools and patterns that will retrieve secrets from HashiCorp Vault and inject them into a Kubernetes application. We’ll discuss how each approach can limit the surface area for secrets injection and examine the retrieval of static and dynamic secrets.

Speaker

Rosemary Wang

 
As an explorer of infrastructure automation and a cloud enthusiast, Rosemary works to bridge the technical and cultural barriers between infrastructure engineers and application developers. She has a ...