Added small shell tool for fetching certs of SealedSecrets for backup purpose #7
3
02-k8s/.gitignore
vendored
Normal file
3
02-k8s/.gitignore
vendored
Normal file
@@ -0,0 +1,3 @@
|
||||
# Kube Seal backup
|
||||
kubeseal.cert
|
||||
kubeseal.key
|
||||
9
02-k8s/fetch_kubeseal_certs.sh
Executable file
9
02-k8s/fetch_kubeseal_certs.sh
Executable file
@@ -0,0 +1,9 @@
|
||||
#!/usr/bin/bash
|
||||
|
||||
rm kubeseal.cert kubeseal.key 2> /dev/null
|
||||
|
||||
# public cert
|
||||
(umask 0077 && kubeseal --controller-namespace=sealed-secrets --fetch-cert > kubeseal.cert)
|
||||
|
||||
# full cert backup
|
||||
(umask 0077 && kubectl get secret -n sealed-secrets -l sealedsecrets.bitnami.com/sealed-secrets-key -o yaml > kubeseal.key)
|
||||
Reference in New Issue
Block a user