Secrets
Store and inject sensitive data — passwords, tokens, TLS certificates — using Kubernetes Secrets with appropriate security practices.
Full content coming soon. This lesson is being written.
This lesson covers Kubernetes Secrets:
- Secret types: Opaque, kubernetes.io/tls, kubernetes.io/dockerconfigjson
- Creating Secrets: kubectl, YAML, from files
- Base64 encoding vs actual encryption (important distinction!)
- Encryption at rest: enabling EncryptionConfiguration
- Consuming secrets as env vars vs mounted volumes
- External Secrets Operator: pulling from Vault, AWS SSM, GCP Secret Manager
- RBAC for secrets access control
Check back soon for the full content.