-
Task
-
Resolution: Unresolved
-
Undefined
-
False
-
-
False
-
-
As an OKD engineer, I would like to investigate the value of using Vault on OperateFirst, for storing screts such as credentials to push to the quay's OKD organisation, the signing key, and others, instead of storing those in plain secrets.
Acceptance criteria:
Show how a tekton task can consume a kv pair from the vault without creating an intermediate secret in the namespace
References:
https://www.operate-first.cloud/apps/content/vault_eso/write_to_vault_with_k8s.html
https://github.com/operate-first/support/issues/1130 (request for okd dedicated path on vault)
https://vault-ui-vault.apps.smaug.na.operate-first.cloud/ (sign in like this without a role or mount path)