建立 azure secret - daniel-qa/Azure-Kubernetes-Service GitHub Wiki
https://learn.microsoft.com/zh-tw/azure/aks/azure-files-volume#create-a-kubernetes-secret
建立 Kubernetes 祕密
使用現在資源群組和儲存體帳戶的情況 只要先取得 storage key,kubectl create secret 後面參數就接實際資源和帳戶名稱
STORAGE_KEY=$(az storage account keys list --resource-group IESResourceGroup --account-name iesnas --query "[0].value" -o tsv)
kubectl create secret generic azure-secret --from-literal=azurestorageaccountname=iesnas --from-literal=azurestorageaccountkey=$STORAGE_KEY
1. Get storage account key
# Get storage account key
STORAGE_KEY=$(az storage account keys list
--resource-group $AKS_PERS_RESOURCE_GROUP
--account-name $AKS_PERS_STORAGE_ACCOUNT_NAME --query "[0].value" -o tsv)
- Ex
# Get storage account key
STORAGE_KEY=$(az storage account keys list
--resource-group IESResourceGroup
--account-name iesnas --query "[0].value" -o tsv)
- $AKS_PERS_STORAGE_ACCOUNT_NAME
AKS_PERS_STORAGE_ACCOUNT_NAME=mystorageaccount
AKS_PERS_STORAGE_ACCOUNT_NAME=iesnas
2. 建立 Kubernetes 祕密
kubectl create secret generic azure-secret
--from-literal=azurestorageaccountname=$AKS_PERS_STORAGE_ACCOUNT_NAME
--from-literal=azurestorageaccountkey=$STORAGE_KEY
- Ex
kubectl create secret generic azure-secret
--from-literal=azurestorageaccountname=iesnas
--from-literal=azurestorageaccountkey=kOHqeHSRFnggXXXXX
kubectl create secret generic azure-secret --from-literal=azurestorageaccountname=iesnas --from-literal=azurestorageaccountkey=$STORAGE_KEY
- 使用命令檢查密鑰是否創建
kubectl get secret -n <namespaceName>