I got the sealed secrets running as expected. Also created a new keys…

…tore with same password as what is in Sealed Secrets
adwise-fiu · Feb 11, 2024 · 4fc8fa4 · 4fc8fa4
1 parent b33849f
commit 4fc8fa4
Show file tree

Hide file tree

Showing 5 changed files with 26 additions and 5 deletions.
diff --git a/.gitignore b/.gitignore
@@ -1,6 +1,5 @@
 # Making certificates, dont mess around here
 .env
-keystore
 ppdt-certificate
 
 # No Binaries

diff --git a/README.md b/README.md
@@ -53,7 +53,7 @@ rm kubeseal
 curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3
 chmod 700 get_helm.sh
 ./get_helm.sh
-rm ./get_helm
+rm get_helm
 
 # Add Sealed Secret Cluster
 helm repo add sealed-secrets https://bitnami-labs.github.io/sealed-secrets
@@ -130,12 +130,12 @@ aws eks update-kubeconfig --name ppdt --region us-east-2
 It is suggested you use the existing sealed secret. The password in this secret is aligned with what is on the keystore,
 
 ```commandline
-kubectl -f apply ppdt-sealedsecret.yaml
+kubectl apply -f ppdt-sealedsecret.yaml
 ```
 
 Alternatively, you can create a new sealed secret as follows:
 ```bash
-kubectl create secret generic ppdt-secrets --from-literal=keystore-pass=ZifangHuang
+kubectl create secret generic ppdt-secrets --from-literal=keystore-pass=<SECRET_VALUE>
 kubectl get secret ppdt-secrets -o yaml | kubeseal > ppdt-sealedsecret.yaml
 ```
 However, if you make a new sealed secret, you should re-make the keystore as well.
@@ -221,4 +221,4 @@ Code Authors: Andrew Quijano, Spyros T. Halkidis, Kevin Gallagher
 [MIT](https://choosealicense.com/licenses/mit/)
 
 ## Project status
-Fully tested and completed. Although I believe I need a label encoder to compare two strings.
+Fully tested and completed. Although I believe I need a label encoder to compare two strings.
diff --git a/create_keystore.sh b/create_keystore.sh
diff --git a/keystore b/keystore
diff --git a/ppdt-sealedsecret.yaml b/ppdt-sealedsecret.yaml
@@ -0,0 +1,22 @@
+{
+ "kind": "SealedSecret",
+ "apiVersion": "bitnami.com/v1alpha1",
+ "metadata": {
+ "name": "ppdt-secrets",
+ "namespace": "default",
+ "creationTimestamp": null
+ },
+ "spec": {
+ "template": {
+ "metadata": {
+ "name": "ppdt-secrets",
+ "namespace": "default",
+ "creationTimestamp": null
+ },
+ "type": "Opaque"
+ },
+ "encryptedData": {
+ "keystore-pass": "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"
+ }
+ }
+}