Skip to content

Latest commit

 

History

History
15 lines (12 loc) · 399 Bytes

secrets.md

File metadata and controls

15 lines (12 loc) · 399 Bytes

Secrets

  1. No secrets in repo
  2. Secrets are stored in GCP secret manager
  3. Terraform can fetch secrets via data
  4. Terraform can use github secrets via env vars
  5. terraform.tfvars file should not be commited to repo
  6. avoid terraform outputs in GitGub Actions

TODO

  1. naming conditions
  2. conditional access via SA
  3. Kubernetes CSI secret driver test
  4. Problems how to create secrets?