Resource Type: kubernetes_secret_volume_source

Defined in:

lib/puppet/type/kubernetes_secret_volume_source.rb

Providers:

swagger

Overview

Adapts a Secret into a volume.

The contents of the target Secret’s Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.

Properties

• default_mode

  Optional: mode bits to use on created files by default. Must be a value between 0 and 0777. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

• ensure (defaults to: present)

  The basic property that the resource should be in.

  Supported values:

  • present
  • absent
• items

  If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the ‘..’ path or start with ‘..’.

• optional

  Specify whether the Secret or it’s keys must be defined

• secret_name

  Name of the secret in the pod’s namespace to use. More info: kubernetes.io/docs/concepts/storage/volumes#secret

Parameters

• name (namevar)

  Name of the secret_volume_source.

• provider

  The specific backend to use for this ‘kubernetes_secret_volume_source` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.