An interactive wrapper for kubeseal binary
Project description
kubeseal-auto
kubeseal-auto is an interactive wrapper for kubeseal binary used to encrypt secrets for sealed-secrets.
Installation
The recommended way to install this script is pipx:
pipx install kubeseal-auto
Usage
By default, the script will check the version of sealed-secret controller and download the corresponding kubeseal binary to ~/bin directory.
To run the script in fully interactive mode:
kubeseal-auto
Additionally, a "detached" mode is supported:
# Download sealed-secrets certificate for local signing
kubeseal-auto --fetch
# Generate SealedSecret with local certificate
kubeseal-auto --cert <kubectl-context>-kubeseal-cert.crt
[!IMPORTANT] In the detached mode
kubeseal-auto
will not download thekubeseal
binary and will look for it in the system $PATH.
To select kubeconfig context:
kubeseal-auto --select
To append or change key values in the existing secret:
kubeseal-auto --edit secret-name.yaml
To reencrypt all secrets in a directory (not working in a detached mode):
kubeseal-auto --re-encrypt /path/to/directory
To back up the encryption and decryption keys (not working in a detached mode):
kubeseal-auto --backup
Contributing
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for kubeseal_auto-0.5.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | aed4ddc34a88a03c8093c716aecf316a1a1301fc6a70930a8f8252330041464e |
|
MD5 | f1c35fbcacbcf098fd573d47fb5ecba7 |
|
BLAKE2b-256 | ce27409492235f0f830b4a3db73bbc6823a44ca829234c585da1906fa9660300 |