Dustin C. Hatch
cf7ec7dd64
When migrating the `pod-secrets` Secret to a SealedSecret, I accidentally created it using the `--from-file` instead of `--from-env-file` argument to `kubectl secret create generic`. This had the effect of creating a single key named `pod.secrets` with the entire contents of the file as its value. This broke backups to MinIO, since the PostgreSQL containers could no longer read the credentials from the environment. Regenerating the SealedSecret with the correct arguments resolves this issue.
47 lines
3.8 KiB
YAML
47 lines
3.8 KiB
YAML
---
|
|
apiVersion: bitnami.com/v1alpha1
|
|
kind: SealedSecret
|
|
metadata:
|
|
name: ssh-auth
|
|
namespace: postgresql
|
|
labels:
|
|
app.kubernetes.io/name: postgresql
|
|
app.kubernetes.io/component: postgresql
|
|
app.kubernetes.io/instance: postgresql
|
|
app.kubernetes.io/part-of: postgresql
|
|
spec:
|
|
encryptedData:
|
|
ssh-backup.key: AgCCfWJXzgJOem21xF6/acHZlHrM6oP6f1o48Ub/B0DVn+F8ShDMBBUajivjl3bCE/aFm0Gtnexv3Kgw5QbCRMj8Hidjj1t046qboZ6DOKU6N8Z2QK4LdMWDztGBHqcokjkuU3bvCTRzkLf4+51KJDYfq3zXbJjBdt5j1wgpiQ5gV0EDXukihG2yuJ1xG53joFVve/GrOQ87anMAqJXKLQZ3r2fVM+A0GbJXyXPiUF6+8zgFXskPb2FOceZmNprHSRLPJTuRfO6N90g3ypXC3ewsamNqNfMxRfDM6lH/50KXfBfZsTHL/UHlcWEfAmL/Tw1MxYqZ43hOE7ZPIyKdl1xGHaQNRopGWuDnYaCVcuRN3nFzVicvQXNqSUnG+aRFemuc/N60MZxtG6eTnJ6Cihvcx6OFkJoT41CZWO2y3gFA4oUWWfBQeyLTTYe0Y/2Za8T9gwSUddMG7Ly4e/l78uqD2gY7iBLBCiH5NZ9vy3mm0Wuk28Sk0TGn3IZBJcTOeGoOhUPqHuy67f9uKffYSpoX5CD18olB0vZyCyFPJW11Js5ASmrJwT/tU4g3kgQpICVaJkrLBYnPweI0jmfUqx5GeAEvz2jfFadghGSRip1CNZ7DKTriEpO7sUkWIYl6piVDZUpDbT8y2blIbrMbonvr1IQ2HJrtG8ZSBC+x9gFMbZNjKnWAaYgzUTtVLBNIorcdrA1u7UgQzdgTtMsTqCnx1/AnYwAG6U5P1xDtww9GC+xDGYppHIux6hl5re8aUhDpi1SktryZnST+qzLfll/8867dgK4Pj4JJ/uPGtRbD4vfiMGnsnj56DOh8WJpYAWuaAOYpZvT8o9MpdLzV0KM0E69v8NfSLWYWmrofaQIxEx6ta5YospN8dEaeduWMNAFFbQ+vLx+K4cTL6puopdHp/krVbygzd8Oea1yRRWQ1QbpaQW7Lm2Wad9X0sskg33PRG2PI17ctlf9O/3Vyn+NAZaaRaWJObdtTWWZCy/5+6q6UGmM3hNxXhuHW9Si46oGKtyJtLGlJN8CNyOjjSbUCCUqmk5H90pw+iI5bYiQRnS8mdyul7PACCA+2JJPZ3Bcbz2KHt/GZx9AOgQaffp4zpy86GLWuQ50250asHN1T2+XYa773joi/ShPIGrxREfrrVxi6LGvFJMn32f7/WvVZpeF/AG5rlLHurrWkNty7jfvNb5dW5WxhBFPcfkipyb4lDAGe4MKfoFjQZ7RqjniL4hd96w5cb9Gn4ks=
|
|
template:
|
|
metadata:
|
|
name: ssh-auth
|
|
namespace: postgresql
|
|
labels:
|
|
app.kubernetes.io/name: postgresql
|
|
app.kubernetes.io/component: postgresql
|
|
app.kubernetes.io/part-of: postgresql
|
|
|
|
---
|
|
apiVersion: bitnami.com/v1alpha1
|
|
kind: SealedSecret
|
|
metadata:
|
|
name: pod-secrets
|
|
namespace: postgresql
|
|
labels:
|
|
app.kubernetes.io/name: postgresql
|
|
app.kubernetes.io/component: postgresql
|
|
app.kubernetes.io/instance: postgresql
|
|
app.kubernetes.io/part-of: postgresql
|
|
spec:
|
|
encryptedData:
|
|
AWS_ACCESS_KEY_ID: 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
|
|
AWS_SECRET_ACCESS_KEY: AgAv4sDeqinfcuzyQJL40l/+2q+1UA0N/90m6FrouIvZtf4egCJn8FFoyPdCvfZEa91i91w5/gdX/OrfOkVWN9nOMd4gGr96sNTKeXDWpkL1ZdhCh4iVgor9ICkJTyxp1pL16B+bPP6QMDTnt6sJ7XC8Cn2NLF8lbP/+ZQdCYRg67eEdLDIi5ecVS26JiAEJuAm6rE4FHOO4ddmMg3EZLMKkT4yAwHflXb4XhE7T3MD5FiNvuzHrnW9aVFNEl9HTv2ONrYNh7yH1FzMoqy9WaLtb/DLCz342LGdwLa5JaxC7c3528K4I43oNcWHabJrOlkJXOhFH8EIOX/nx6X+qveBNfb+BWAwgcMfH04+dYcnQ8BT1g+zhZOXV3TD+fLoSTCZ1aEulzaT0agGVw7jcLlhrGIGyE5aTSi3uRSG+cgynPSVEv6evwHqmbt5zS8eTKyuhIiCWM+CytTRpZfNCdqrZTY3yelN7z3SLtjB2qIvxEwkBJtU2/Ahgu7RzhJEFHMNE2CAL7bypToFRfyn52rUhqGY/DbP7E64S2ww+7tJI2UJ4L57RoxaCD3wyt/IIL40j0fMhj34swzvdl7VrNt3WxHF+Uc7LwRjFpO/CVZG5diNv48dOplWRuJOTJm6coIipgZu2NDudM/bPOV6ayMBSMxrchDPUO+D7zXVQ5Kpps7DAend6Mff2qDh1x/OpGp72rYNEoF7WEov0dHq+y12yWlEvItnFg9BX7G1A9OODNg==
|
|
template:
|
|
metadata:
|
|
name: pod-secrets
|
|
namespace: postgresql
|
|
labels:
|
|
app.kubernetes.io/name: postgresql
|
|
app.kubernetes.io/component: postgresql
|
|
app.kubernetes.io/part-of: postgresql
|