Container Secrets

A Secret is an object that contains a small amount of sensitive data such as a password, a token, or a key.

After logging into OmniDeq, click on the Project where you want to update the container secrets and click on Cruize.
Click on blueprint version count on blueprint card. After clicking to count, blueprint versions page will be displayed which contains list of blueprint versions.
Click on View configurations kebab menu option or click on blueprint version name then of blueprint version to view blueprint configurations. Go to Deployments tab and click on Edit deployment definition from Action column of any deployment.
Then deployment definition page will be opened, now go to Containers tab. Select container and then go to Secrets tab as shown in the below image.

Add Secret

Click on Add New Secret button from secrets tab, the form will be displayed to add Secret as shown in the below image.

Add Secret by providing below details.

Secret name	Type Secret name here
Referenced as	Default selected is “Env”, change as applicable
Input type	Select applicable Input type (Text based / File based)
Add Text/File Data	Based on input type provide key values using text data or by uploading file for value
Labels and Annotations	These are optional fields. Add Labels and Annotations here
Secret Type	There are 5 different secret types. Default selected is "Opaque". Enter secrets data based on selected secret type.

Secret name :
- Only lowercase alphanumerics, '-' or '. allowed
- Start and end with an alphanumeric character
- Maximum 253 characters allowed
- Name must be unique
Referenced as :
- There are two options for referenced as :
  1. Env :
    - For env provide text based secret data
  2. Volumemount :
    - For volumemount provide secret data using text based or file based input.
    - Provide data based on selected secret type.
    - For volumemount provide below details-
      - Mount path: Enter mount path which should start with '/'.
      - Subpath: Subpath is optional.
      - Subpath key: Subpath key is also optional but if subpath is entered then subpath key is mandatory to enter.
Secret type:
- There are 5 secret types available as listed below :
  1. Opaque- For opaque type of secret provide key value pair data.
  2. kubernetes.io/basic-auth- For kubernetes.io/basic-auth provide username and password.
  3. kubernetes.io/ssh-auth- For kubernetes.io/ssh-auth provide ssh-privatekey.
  4. kubernetes.io/tls- For kubernetes.io/tls provide tls certificate and key.
  5. kubernetes.io/dockerconfigjson- For kubernetes.io/dockerconfigjson provide docker config json.
Note: Provide secret data either using text based input or file based input(only available for referenced as volumemount).
Labels & Annotations: Cilck here to know more details.

Prerequisites: - In order to add secret from sharable secret list, first create shared secret in the blueprint. Click here to know more steps of adding shared secret.
Click on Add from Sharable Secrets button as shown in the image below.
After clicking on button, shared secret list will be displayed as shown in the image below.
Select secret(s) from the list and click on Save. All the selected secrets will listed as shown in image below.

Click on View icon from actions column in secrets table to view secret label & annotations as shown in image below.

Click on the Edit icon from actions column in secrets table to edit secret details as shown in image below.
This will open form with data to edit as shown in below image, after editing click on Update button to save updated changes.

Note: In edit secret data values are shown in ****** format for security purpose.
If secret is added from sharable option, it can not be edited. In that case, edit option is disabled as shown in image below.

Click on the Delete icon from actions column of secrets table to delete secret as shown in image below.
If secret is added from sharable option and if deleted that then it will removed only from containers secret list.