An interactive wrapper for kubeseal binary
Project description
kubeseal-auto
kubeseal-auto is an interactive wrapper for kubeseal binary used to encrypt secrets for sealed-secrets.
Installation
The recommended way to install this script is pipx:
pipx install kubeseal-auto
Usage
By default, the script will check the version of sealed-secret controller and download the corresponding kubeseal binary to ~/bin directory.
To run the script in fully interactive mode:
kubeseal-auto
Additionally, a "detached" mode is supported:
# Download sealed-secrets certificate for local signing
kubeseal-auto --fetch
# Generate SealedSecret with local certificate
kubeseal-auto --cert <kubectl-context>-kubeseal-cert.crt
[!IMPORTANT] In the detached mode
kubeseal-autowill not download thekubesealbinary and will look for it in the system $PATH.
To select kubeconfig context:
kubeseal-auto --select
To append or change key values in the existing secret:
kubeseal-auto --edit secret-name.yaml
To reencrypt all secrets in a directory (not working in a detached mode):
kubeseal-auto --re-encrypt /path/to/directory
To back up the encryption and decryption keys (not working in a detached mode):
kubeseal-auto --backup
Contributing
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for kubeseal_auto-0.4.8-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | c36e391b1159a4601cfbc3e410405e39588cbdec2f52093caf8142100aea3c5b |
|
| MD5 | 2f96b993053379e89ced9497e0f98b10 |
|
| BLAKE2b-256 | 1f1853f5f55345cdbb97fc981c1d05bdf62dc9cf85fdead4380a7d7ef60d55bd |
