Securely provide password to postgres-backend (helm config)

jonathanfrappier · May 22, 2025, 12:45pm

I think you should be able to add your credentials to a Kubernetes secret, and reference those in the Helm chart.

Something like..

spec:
  template:
    spec:
      containers:
        - name: app
          env:
            - name: DB_PASSWORD
              valueFrom:
                secretKeyRef:
                  name: db-creds
                  key: password

There is also this Helm plugin, but I have never used it so please perform due diligence on this plugin and ensure it complies with your companies security policies:

If you maintain multiple clusters, you can also reference secrets from Vault (e.g. you have a management cluster, and separate cluster(s) for different environments.

Topic		Replies	Views
Passing secrets into vault from helm configs using native-kubernetes-secrets Vault vault	5	42	May 29, 2025
Injecting Secrets from Hashicorp Vault to a helmchart Vault vault	3	1945	May 21, 2024
How to access a secret injected into a Kubernetes pod? Vault k8s , helm , vault	5	2297	January 19, 2024
How to inject Vault secrets in a common Helm chart in Kubernetes? Vault k8s , vault	0	14	May 1, 2025
How to configure AWS RDS postgresql as a persistent storage for Hashicorp vault Vault k8s , vault	8	1265	June 27, 2023

Securely provide password to postgres-backend (helm config)

Related topics