Configuring the External Secrets Operator Secret Store

You can specify a username and password directly in your Secret Store yaml config file or by referencing a Kubernetes secret.

The example below shows a YAML config file that specifies a username and password directly via the Value field.

Copy

apiVersion: external-secrets.io/v1beta1
kind: SecretStore
metadata:
  name: secret-server-store
spec:
  provider:
    secretserver:
      serverURL: "https://yourtenantname.secretservercloud.com"
      username:
        value: "yourusername"
      password:
        value: "yourpassword"

The example below shows the username in the Secret Store config and the password referencing a Kubernetes secret.

Copy

apiVersion: external-secrets.io/v1beta1
kind: SecretStore
metadata:
  name: secret-server-store
spec:
  provider:
    secretserver:
      serverURL: "https://yourtenantname.secretservercloud.com"
      username:
        value: "yourusername"
      password:
        secretRef:
          name: <NAME_OF_K8S_SECRET>
          key: <KEY_IN_K8S_SECRET>