Secret propagation hands-on
Secret propagation is a critical Crossplane pattern, as all resources provisioned generally require credentials to access the resource. We covered the same topic in Chapter 4, as theory. Now, we will go through a hands-on journey using a real-world example. Before jumping into the example, let’s brush up on the concept quickly in a few points:
- Define the list of secret keys in XRD using the
ConnectionSecretKeysattribute. - Define the namespace and secret name under the respective resource using the
WriteConnectionSecretToRefconfiguration. - Finally, populate the secret keys defined in the XRD using the
ConnectionDetailsconfiguration.
We will expand the hands-on example used for resource reference with nested XR to learn configurations for storing the secret. We created an S3 bucket, its policy, and an IAM user to access the bucket in that specific example. The example will not be fully finished until we extract the bucket details...
