diff --git a/docs/README.md b/docs/README.md index fb84347385..82bab9b731 100644 --- a/docs/README.md +++ b/docs/README.md @@ -64,7 +64,6 @@ For a better viewing experience please check out our live documentation site at * [`kops` updating](operations/updates_and_upgrades.md#updating-kops) * [Label management](labels.md) * for cluster nodes -* [Secret management](secrets.md) * [Service Account Token Volume Projection](operations/service_account_token_volumes.md) * [Moving from a Single Master to Multiple HA Masters](single-to-multi-master.md) * [Upgrading Kubernetes](tutorial/upgrading-kubernetes.md) diff --git a/docs/secrets.md b/docs/secrets.md deleted file mode 100644 index 1b4990a3dc..0000000000 --- a/docs/secrets.md +++ /dev/null @@ -1,43 +0,0 @@ -## Managing secrets - -### get secrets - -### get secret -oplaintext - --oplaintext exposes the raw secret value. - -### create secret - -`kops create secret sshpublickey admin -i ~/.ssh/id_rsa.pub` - -### delete secret - -Syntax: `kops delete secret ` -or `kops delete secret ` - -The ID form can be used when there are multiple matching keys. - -example: -`kops delete secret sshpublickey admin` - -Note: it is currently not possible to delete secrets from the keystore that have the type "Secret" - -### adding ssh credential from spec file -```yaml -apiVersion: kops.k8s.io/v1alpha2 -kind: SSHCredential -metadata: - labels: - kops.k8s.io/cluster: dev.k8s.example.com -spec: - publicKey: "ssh-rsa AAAAB3NzaC1 dev@devbox" -``` - -## Workaround for changing secrets with type "Secret" -As it is currently not possible to modify or delete + create secrets of type "Secret" with the CLI you have to modify them directly in the kOps s3 bucket. - -They are stored /clustername/secrets/ and contain the secret as a base64 encoded string. To change the secret base64 encode it with: - -```echo -n 'MY_SECRET' | base64``` - -and replace it in the "Data" field of the file. Verify your change with get secrets and perform a rolling update of the cluster. diff --git a/mkdocs.yml b/mkdocs.yml index 3dd125f5eb..81053229bf 100644 --- a/mkdocs.yml +++ b/mkdocs.yml @@ -83,7 +83,6 @@ nav: - Cluster Templating: "operations/cluster_template.md" - GPU setup: "gpu.md" - Label management: "labels.md" - - Secret management: "secrets.md" - Rotate Secrets: "operations/rotate-secrets.md" - Service Account Token Volume: "operations/service_account_token_volumes.md" - Moving from a Single Master to Multiple HA Masters: "single-to-multi-master.md"