16-Lab-Manage-Kubernetes-secrets.md

Lab - Manage Kubernetes Secrets

• Take me to the Lab

Solutions for Lab - Manage Kubernetes Secrets:

• To get the Secrets exist on the system, Run

  Run
  $ kubectl get secrets
  Answer:
  1
  

• How many secrets are defined in the default-token secret?

  Get the name of the secret by running
  $ kubectl get secrets
  Then look at the data field using
  $ kubectl describe secrets default-token-sphlt
  Answer:
  3
  There are three secrets - ca.crt, namespace and token.
  

• kubernetes.io/service-account-token is the type of the default-token secret?

  Look at the Type field using
  
  $ kubectl describe secrets default-token-sphlt  
  

• Type is not a secret data defined in default-token secret.

• Create a new secret named db-secret.

  Run
  $ kubectl create secret generic db-secret --from-literal=DB_Host=sql01 --from-literal=DB_User=root --from-literal=DB_Password=password123
  

• Configure webapp-pod to load environment variables from the newly created secret.

  Run
  $ kubectl delete pod webapp-pod
  
  # Open YAML file in vi editor
  $ vi pod.yaml
  
  apiVersion: v1
  kind: Pod
  metadata:
    labels:
      name: webapp-pod
    name: webapp-pod
    namespace: default
  spec:
    containers:
    - image: kodekloud/simple-webapp-mysql
      imagePullPolicy: Always
      name: webapp
      envFrom:
      - secretRef:
          name: db-secret
  
  $ kubectl apply -f pod.yaml