加载中
正在获取最新内容,请稍候...
External Secrets Operator - Securely Sync External Secrets to Kubernetes
External Secrets Operator syncs secrets from external services like AWS Secrets Manager, Azure Key Vault, Google Secret Manager, and more, injecting them securely into Kubernetes as native Secrets.
Go
Added on 2025年6月27日5,132
Stars985
ForksGo
LanguageProject Introduction
Summary
External Secrets Operator (ESO) is a Kubernetes operator that reads secrets from external secret management systems and automatically injects them as Kubernetes Secrets.
Problem Solved
Managing sensitive information like database credentials or API keys directly within Kubernetes manifests or manually syncing them from external vaults is insecure, cumbersome, and error-prone. This project automates the secure synchronization.
Core Features
Multi-Provider Support
Automatically fetches secrets from various external providers.
Kubernetes Integration
Creates and updates native Kubernetes Secret objects based on external data.
Dynamic Sync
Supports dynamic secret updates without requiring pod restarts.
Tech Stack
Go
Kubernetes API
Controller Runtime
Use Cases
External Secrets Operator is suitable for any scenario where sensitive data needs to be managed externally and consumed by applications running in Kubernetes.
Database Credential Management
Details
Automatically inject database credentials stored in AWS Secrets Manager into Kubernetes Pods.
User Value
Eliminates hardcoding credentials in manifests and ensures credentials can be centrally rotated.
API Key Distribution
Details
Sync API keys or service account credentials from HashiCorp Vault into Kubernetes for microservice access.
User Value
Standardizes secure distribution of access tokens to applications.
TLS Certificate Management
Details
Provision TLS certificates stored in Azure Key Vault as Kubernetes TLS Secrets for ingress controllers.
User Value
Automates certificate lifecycle management within Kubernetes.
Recommended Projects
You might be interested in these projects
jgraphdrawio
draw.io is a versatile, client-side JavaScript editor for creating diagrams of various types, offering a free and powerful alternative to traditional diagramming software.
JavaScript
1879317
schlagmichdochPairDrop
PairDrop offers effortless, cross-platform file transfers without requiring any setup or signup. Simply open the app in your browser on nearby devices to start sharing instantly.
JavaScript
7848451
spring-projectsspring-security
Spring Security is a powerful and highly customizable authentication and access-control framework. It is the de facto standard for securing Spring-based applications. This project provides comprehensive security services for Java applications, particularly web applications.
Java
91926076