douxi3233 2018-11-12 23:44
浏览 153
已采纳

如何从控制器文件向本地Kubernetes部署的服务提供静态文件?

I have defined a deployment file:

---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: {{ ... }}
  labels:
    app.kubernetes.io/name: {{ ... }}
    helm.sh/chart: {{ ... }}
    app.kubernetes.io/instance: {{ .Release.Name }}
    app.kubernetes.io/managed-by: {{ .Release.Service }}
spec:
    ...

My service implements JWT validation and thus requires a public key. Can I somehow specify in the deployment file to serve a locally generated pub key file to my service?

  • 写回答

2条回答 默认 最新

  • drqxfmfa804578 2018-11-14 19:50
    关注

    I ended up using secrets suggested by @Crou to create the key:

    $ kubectl create secret generic pub-key --from-file=./jwt-key.pub

    and then mounted it to a volume in my deployment yaml:

    spec:
  volumes:
    - name: secret
      secret:
        secretName: pub-key
        defaultMode: 256
...
  containers:
      volumeMounts:
        - name: secret
          readOnly: true
          mountPath: /secret

    and was able to access my key at /secret/jwt-key.pub

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?