README
¶
This project is currently in public beta and under active development. Please report any issues you encounter.
SOPS-Operator ❤️
We have always loved how Flux handles Secrets with SOPS, it's such a seamless experience. However we have noticed, that it's kind of hard to actually distribute keys to users in a kubernetes native way. That's why we built this operator. It introduces Providers, which essentially match Kubernetes resources which represent Keys or access to KMS stores. On the Provides you also declare, which Secrets you want to encrypt with that provider. Currently only works with PGP and AGE for n-secrets That leaves open that, N-providers can load private keys for one Secret, in complex scenarios.
Regarding the code, most of the SOPS implementation was taken from the Flux kustomize-constroller project. We have left the License-Header as-is, if further attribution is wished, please open an issue. We go the idea from the existing sops-operator. However the implementation was not optimal for our use-cases, that's why we decided to release our own solution.
Documentation
See the Documentation for more information on how to use this addon.
Demo
Spin up a live demonstration of the addon on Killercoda:
Support
This addon is developed by the community. For enterprise support (production ready setup,tailor-made features) reach out to Peak Scale
License
Copyright 2024.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Directories