Upsert secret from AWS parameter store as is without base64 encoding

external-secrets / kubernetes-external-secrets

Integrate external secret management systems with Kubernetes

MIT License

2.6k stars 404 forks source link

Upsert secret from AWS parameter store as is without base64 encoding #893

Closed y0zg closed 2 years ago

y0zg commented 2 years ago

I have a complex secret(config like) which fails during saving as is in AWS parameter store due to many inherited parameters like {{ }}. So, I encoded that secret to base64 format, but the problem is that ExternalSecrets while creating Secret also encodes the secret, thus I have double-encoded base64 secret. Any ideas how to mitigate this on ExternalSecrets side to have plaintext inserted into Secret? Tried to use stringData but didn't get any expected result

Flydiverny commented 2 years ago

This section is probably helpful https://github.com/external-secrets/kubernetes-external-secrets#binary-secrets