Verification
This topic provides the information that you can use to verify that the integration with Red Hat OpenShift / ESO fetches secrets from Secret Server.
Verifying the ExternalSecret Status
To verify that your secrets are synchronized from Secret Server into Kubernetes:
-
Run the following command:
oc get externalsecret -AThe output contains the statuses:
-
SecretSynced: Secret successfully synchronized from Secret Server. -
SecretSyncedError: Secret failed to sync. Check the logs and network policies. See Checking the Controller Logs. -
SecretDeleted: Secret was removed from Secret Server.
-
Verifying Kubernetes Secrets
To verify that a Kubernetes Secret was created for a secret fetched from Secret Server:
-
Run the following commands:
oc get secret database-secret -n my-appoc get secret database-secret -n my-app -o jsonpath='{.data}' | jq 'keys'
Checking the Controller Logs
To review the controller logs for errors:
-
Run the following commands:
oc logs -n external-secrets deployment/external-secrets --tail=50oc logs -n external-secrets deployment/external-secrets -f
