Skip to content

extraObjects

Feature state: 1.1.0

extraObjects value in Kubedeploy accepts a list of raw Kubernetes manifests to be deployed.

Note

extraObjects can be used to define any other Kubernetes object type or configuration that is not directly supported by Kubedeploy.

Warning

Object names deployed with extraObjects will not be prefixed with kubedeploy.fullname template. Extra care should be taken when deploying extraObjects with multiple releases to avoid Object name collisions.

Define csi SecretProvider with extraObjects

values.yaml
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
nameOverride: my-app
image:
  repository: nginx
  tag: 1.25.2

extraObjects:
  - apiVersion: secrets-store.csi.x-k8s.io/v1
    kind: SecretProviderClass
    metadata:
      name: aws-secrets-manager-secrets
    spec:
      provider: aws
      parameters:
        objects: |
          - objectName: "name-of-aws-secret"
            objectType: "secretsmanager"
            jmesPath:
                - path: db_username
                  objectAlias: db_username
                - path: db_password
                  objectAlias: db_password
                - path: db_hostname
                  objectAlias: db_hostname
                - path: database
                  objectAlias: database

extraVolumeMounts:
  - name: external-secrets
    readOnly: true
    mountPath: /etc/aws-secrets
    csi:
      driver: secrets-store.csi.k8s.io
      readOnly: true
      volumeAtributes:
        secretProviderClass: "aws-secretes-manager-secrets"
Deploy command
helm install webapp sysbee/kubedeploy -f values.yaml

The above example will create a SecretProviderClass object which can be referenced later in extraVolumeMounts.

See also: