search

hashicorp / vault-secrets-operator

The Vault Secrets Operator (VSO) allows Pods to consume Vault secrets natively from Kubernetes Secrets.
https://hashicorp.com
Other
471 stars 102 forks source link

VaultStaticSecret merge secrets from multiple path to one kubernetes secret #954

Open suxiaoxiaomm opened 1 month ago

suxiaoxiaomm commented 1 month ago

Is your feature request related to a problem? Please describe. We have one shared secret path for all services. And per service also has its specific secret path.

Could we use one VaultStaticSecret to merge multiple path into one Kubernetes secret? As below atpath, instead one path, it accepts a list of paths

apiVersion: secrets.hashicorp.com/v1beta1
kind: VaultStaticSecret
metadata:
  namespace: app
  name: app1-static-secret
spec:
  namespace: application
  mount: secret
  type: kv-v2
  path: 
    - app1/shared-secrets
    - app1/specific-secrets
  refreshAfter: 60s
  destination:
    create: true
    name: app-secret