Skip to main content

Are You Doing Kubernetes Secrets Wrong? Here’s How the Pros Handle It

· 9 min read
Brock Henrie
Lead Software Engineer | CEO Spakl

src

Managing secrets in Kubernetes is hard.

You either...

  • Hard code secrets insecurely
  • Add a manual process, whether that's scripting or running commands one at a time
  • Deploy and maintain a secret management service(s)

Updating services and rotating secrets now takes an eternity just to do something that should take 5 minutes.

We’re going to take you from a hard-coder to a pro coder in no time.

If you want to handle secrets in Kubernetes like a pro, follow along.

First, we’re going to start with the hard, painful way. Then, we’ll bring it up a notch with some automation. Finally, we'll handle it like a pro with a full GitOps-driven approach.

Localhost SSL Certificate

· 10 min read
Brock Henrie
Lead Software Engineer | CEO Spakl

When developing locally, it's often useful to have a self-signed SSL certificate for localhost. This allows you to test your site with HTTPS without needing to purchase a certificate and avoid having to go through the invalid certificate screen.

bad certificate page

This guide will show you how to create a self-signed SSL certificate for localhost using OpenSSL and add it to your trust store.

Managing Postgre With Goose

· 4 min read
Brock Henrie
Lead Software Engineer | CEO Spakl

Goose is a Database migration tool written in go. It allows you to make sequential migrations that you can step forward and backward through your db versions.

This allows your migrations to follow Gitops.