Closed rozdestvenskiy closed 3 years ago
Looks like I fixed it by myself. Now I store key and cert in two different GCP secrets and here is manifest for external secret: apiVersion: kubernetes-client.io/v1 kind: ExternalSecret metadata: name: my-cert # name of the k8s external secret and the k8s secret spec: backendType: gcpSecretsManager projectId: my-project-id data:
I'm using GCP secret manager to store TLS certificates and keys for my project. And I want to use external-secrets to easy share them to pods. But when I try to get access from my Ingress pods, I've got this error:
Error while creating certificate store: failed to load X509 key pair: tls: failed to find any PEM data in certificate input
I checked this secret in kubectl and it cant get access to secret data, as I think:But If i use another data in secret (not pem certificate) all is fine:
Here is the manifest for external secret:
Here is how my secret in GCP looks like:
Can somebody help me? Maybe it is kind of bug?