-
external-secrets
External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.
-
argocd-vault-plugin
An Argo CD plugin to retrieve secrets from Secret Management tools and inject them into Kubernetes secrets
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
terratest
Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Your ask is unclear but I think you're looking for something like https://github.com/external-secrets/external-secrets
We’re using https://github.com/argoproj-labs/argocd-vault-plugin which allows you to define secrets in git (works with more backends than just hashicorp vault despite the name). The documentation took me a bit to figure out, but so far it works.
If your secret are not necessarily to be known prior deployment I use this plugin https://github.com/mittwald/kubernetes-secret-generator
I've ported all my helm charts as terraform modules, because they'd require a ton of customization anyway to replace all the kube-webhook-certgen jobs with the respective cert-manager annotations, I also prefer to sprinkle everything with terratest suites for every tf module.
Related posts
-
Storing secrets in distributed binaries?
-
Secrets Management with Hashicorp Vault - which integration point to use? Sidecar Injector? ESO?
-
Project: Running a local cluster with TLS, ArgoCD GitOps, Vault and a PostgreSQL operator
-
Kubernetes authentication from multiple, external clusters
-
What if your Pods need to trust self-signed certificates?