external-secretsexternal-secrets

View on GitHub↗

6,697 stars·1,337 forks·Go·Apache-2.0·0 viewsexternal-secrets.io/main↗

External Secrets

External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

Features

AI search

Explore more awesome repositories

Describe what you need in plain English — the AI ranks thousands of curated open-source projects by relevance.

Start searching with AI

External Secret Resolution - Manages secret synchronization between external secret stores and Kubernetes using custom resource definitions.

Secret Backend Abstraction Layers - Defines a common interface for pluggable integration with external secret backends.

Secret Store Integrations - Binds ExternalSecret resources to specific provider configurations through SecretStore objects.

Custom Resource Controllers - Watches custom resources and reconciles desired state with actual Kubernetes Secrets using a controller loop.

Polling-Based Synchronization Controllers - Implements a controller that periodically polls external providers to update Kubernetes Secrets.

Cluster-Scoped Secret Stores - Defines cluster-scoped custom resources for managing secrets across all namespaces.

Automated Secret Rotation - Keeps Kubernetes Secrets in sync with external sources as values change without manual intervention.

Cloud Secret Managers - Manages secret lifecycle across Kubernetes clusters by connecting to external secret stores.

External API Secret Synchronizers - Synchronizes secret values from external APIs and services into Kubernetes Secrets using custom resource definitions.

External Provider Secret Injectors - Reads secrets from external providers and automatically creates or updates native Kubernetes Secrets.

Secret Management Providers - Connects to various external secret management services and synchronizes their values into a Kubernetes cluster.

Custom Resource Secret Controllers - Defines and controls secret synchronization using custom resource definitions for external stores.

Secret Injection Providers - Reads secret values from external systems and injects them automatically as native Kubernetes Secrets.

Secret Templates - Transforms raw secret values into structured Kubernetes Secret data using Go templates.

External Secrets

Features

Star history