Split sensitive and non-sensitive info when deploying on kubernetes using helm #1304

pantelis-karamolegkos · 2022-12-14T13:28:59Z

pantelis-karamolegkos
Dec 14, 2022

I see an example here about how to set a values.yaml file when deploying with helm.

The problem is that values.yaml include both sensitive

e.g.

  akhq:
    security:
      enabled: true
      default-group: no-roles        
      basic-auth:
        - username: changeme
          password: changeme
          groups:
            - admin
        - username: changeme
          password: changeme
          groups:
            - reader

and non-sensitive info.

Is there an example somewhere about how to split this information when deploying using helm?

Answered by tchiotludo

Dec 14, 2022

You can use all these:

akhq/helm/akhq/values.yaml

Lines 35 to 62 in 5c4b3e6

     ## Or you can also use configmap for the configuration...  
   configuration:  
   akhq:  
   server:  
   access-log:  
   enabled: false  
   name: org.akhq.log.access  
    
   ##... and secret for connection information  
   existingSecrets: ""  
   # name of the existingSecret  
   secrets: {}  
   # akhq:  
   # connections:  
   # my-cluster-plain-text:  
   # properties:  
   # bootstrap.servers: "kafka:9092"  
   # schema-registry:  
   # url: "http://schema-registry:8085"  
   # type: "confluent"  
   # basic-auth-username: basic-auth-user  
   # basic-auth-password: basic-auth-pass  
   # co…

View full answer

tchiotludo · 2022-12-14T13:30:28Z

tchiotludo
Dec 14, 2022
Maintainer

You can use all these:

akhq/helm/akhq/values.yaml

Lines 35 to 62 in 5c4b3e6

    
           ## Or you can also use configmap for the configuration... 
        
           configuration: 
        
             akhq: 
        
               server: 
        
                 access-log: 
        
                   enabled: false 
        
                   name: org.akhq.log.access 
        
           ##... and secret for connection information 
        
           existingSecrets: "" 
        
           # name of the existingSecret 
        
           secrets: {} 
        
           #  akhq: 
        
           #    connections: 
        
           #      my-cluster-plain-text: 
        
           #        properties: 
        
           #          bootstrap.servers: "kafka:9092" 
        
           #        schema-registry: 
        
           #          url: "http://schema-registry:8085" 
        
           #          type: "confluent" 
        
           #          basic-auth-username: basic-auth-user 
        
           #          basic-auth-password: basic-auth-pass 
        
           #        connect: 
        
           #          - name: "my-connect" 
        
           #            url: "http://connect:8083" 
        
           #            basic-auth-username: basic-auth-user 
        
           #            basic-auth-password: basic-auth-pass

mostly configuration & secrets

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Split sensitive and non-sensitive info when deploying on kubernetes using helm #1304

{{title}}

Replies: 1 comment

{{title}}

Select a reply

	## Or you can also use configmap for the configuration...
	configuration:
	akhq:
	server:
	access-log:
	enabled: false
	name: org.akhq.log.access

	##... and secret for connection information
	existingSecrets: ""
	# name of the existingSecret
	secrets: {}
	# akhq:
	# connections:
	# my-cluster-plain-text:
	# properties:
	# bootstrap.servers: "kafka:9092"
	# schema-registry:
	# url: "http://schema-registry:8085"
	# type: "confluent"
	# basic-auth-username: basic-auth-user
	# basic-auth-password: basic-auth-pass
	# co…

Split sensitive and non-sensitive info when deploying on kubernetes using helm #1304

pantelis-karamolegkos Dec 14, 2022

Replies: 1 comment

tchiotludo Dec 14, 2022 Maintainer

pantelis-karamolegkos
Dec 14, 2022

tchiotludo
Dec 14, 2022
Maintainer