(question) sealed-secrets ingress, what use is it?

Question

(question) sealed-secrets ingress, what use is it?

lknite opened this issue 5 months ago · comments

leland knight commented 5 months ago

I've deployed sealed secrets and using kubeseal I can specify controller-name & controller-namespace to use things.

I've also deployed an ingress using the helm chart.

How can I pass the url made available via the ingress to kubeseal ?
Can I use it to get the public cert? (does the ingress make this unnecessary?)

Alfredo Garcia · Answer 1 · Fri Jan 12 2024 19:46:11 GMT+0800 (China Standard Time)

Hi @lknite thanks for the report. The ingress element in Sealed Secrets chart is optional and we do not recommend its use in normal conditions.
This feature was introduced to enable access to the sealed secrets certificate without exposing the Kubernetes API. However, it is much more advisable to expose the sealed secrets certificate using the default RBAC method.

leland knight · Answer 2 · Fri Jan 12 2024 23:14:31 GMT+0800 (China Standard Time)

Thank you!

For those who come across this later, to access the public cert append to ingress url:
/v1/cert.pem