scf-secret-generator

command

v0.1.1-0...-c51dc2f Latest Latest Go to latest Published: Sep 13, 2018 License: Apache-2.0, Apache-2.0, Apache-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/EngineerBetter/kcf

README ¶

SCF Secret Generator

A utility for SUSE Cloud Foundry for generating secrets based on the role manifest.

It works in conjunction with the fissile project.

These secrets are described in the configuration.variables section, and will be generated if they have secret: true properties and the generator section is populated.

It can generate:

passwords
SSL certificates
SSH keys

It will not overwrite existing secrets, so is safe to run between upgrades.

Usage

scf-secret-generator is meant to run inside a pre-flight Kubernetes job. This job should have the KUBERNETES_NAMESPACE environment variable set, and will create or update the secret called secret inside that namespace.

After that job has finished, you should be able to see that the secrets have been populated:

kubectl -n $(KUBERNETES_NAMESPACE) get secret secret -o yaml

Note that Kubernetes returns these values as base64 encoded, so they must be base64 decoded before using.

Building

A modern Go version is required. The version used in SCF is described in the package spec.

go build will create the binary.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
model
password
secrets
ssh
ssl
util

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL