📄️ External Secrets
External Secrets Operator (ESO): centralized and secure secrets management in Kubernetes, automatic synchronization with external providers like AWS Secrets Manager, HashiCorp Vault, Azure Key Vault, and Google Secret Manager for GitOps workflows.
📄️ Install
Professional External Secrets Operator installation: Helm deployment, production configuration, high-performance sharding, TLS certification, validation webhook, and Prometheus monitoring integration.
📄️ SecretStore
SecretStore and ClusterSecretStore configuration for AWS Secrets Manager: IAM authentication, IRSA (IAM Roles for Service Accounts), security policies, tag conditions, and Parameter Store integration.
📄️ ExternalSecret
ExternalSecret: core ESO resource for secret synchronization, key mapping, refresh intervals, creation policies, advanced templates with Go Template Engine, kubernetes.io/basic-auth types, and complex JSON structures.
📄️ PushSecret
PushSecret: reverse synchronization from Kubernetes to external providers, pushing secrets from cluster to AWS Secrets Manager, deletion policies, update policies, and multi-cloud secret synchronization.
📄️ Extra about External Secrets
Advanced External Secrets features: secret deletion behavior, ClusterExternalSecret for multiple namespaces, multi-provider secrets, status monitoring, Prometheus alerts, and troubleshooting.