How to get started, and achieve tasks, using Kubernetes

Edit This Page

Secrets Walkthrough

Following this example, you will create a secret and a pod that consumes that secret in a volume. See Secrets design document for more information.

Step Zero: Prerequisites

This example assumes you have a Kubernetes cluster installed and running, and that you have installed the kubectl command line tool somewhere in your path. Please see the getting started for installation instructions for your platform.

Step One: Create the secret

A secret contains a set of named byte arrays.

Use the secret.yaml file to create a secret:

$ kubectl create -f docs/user-guide/secrets/secret.yaml

You can use kubectl to see information about the secret:

$ kubectl get secrets
NAME          TYPE      DATA
test-secret   Opaque    2

$ kubectl describe secret test-secret
Name:          test-secret
Labels:        <none>
Annotations:   <none>

Type:   Opaque

data-1: 9 bytes
data-2: 11 bytes

Step Two: Create a pod that consumes a secret

Pods consume secrets in volumes. Now that you have created a secret, you can create a pod that consumes it.

Use the secret-pod.yaml file to create a Pod that consumes the secret.

$ kubectl create -f docs/user-guide/secrets/secret-pod.yaml

This pod runs a binary that displays the content of one of the pieces of secret data in the secret volume:

$ kubectl logs secret-test-pod
2015-04-29T21:17:24.712206409Z content of file "/etc/secret-volume/data-1": value-1