Closed youngkin closed 2 years ago
Turns out, after eventually finding #95 and #128, the problem was the name of my secrets values file. I find naming this file secrets.yaml
as in the examples to be confusing as it is not the kubernetes/hem secrets specification file. So I named it secretValues.yaml
thinking this was more descriptive. Turns out it needs to be named something like secrets.<something>.yaml
. Granted this is somewhat of an RTFM problem on my part as I later found this in the README file:
By convention, files containing secrets are named secrets.yaml, or anything beginning with "secrets." and ending with ".yaml". E.g. secrets.test.yaml and secrets.prod.yaml.
But the examples in the documentation, coupled with the length of the README, make the above lines easy to miss. Perhaps the documentation could be changed to make this naming requirement more obvious?
Feel free to close this if you don't agree. My point was to make sure someone saw this and hopefully makes the README clearer and/or addresses #128.
This also tripped me up. Docs could use some rewording IMHO.
I have a
secretValues.yaml
file that contains the values of the secrets needed by my application. After encoding viahelm secrets enc secretValiues.yaml
it contains the following:After running
helm secrets install . -f secretValues.yaml --namespace video --name customerd --debug
the secret spec is displayed as:Running base64 decoding against the above values renders:
and
The decoded values match the encrypted contents of the
secretValues.yaml
after encrypting viahelm secrets enc secretValiues.yaml
. I expected the values ofdbuser
anddbpassword
from the secrets specification to be the original base64 encoded values, e.g.,somedbuser
andsomedbpassword
, not thehelm secrets
encrypted values.I may be missing something obvious, but it's not apparent to me. Am I missing something?