Hi,
I am on-board some legacy applications into EKS cluster, we have an existing vault server setup by DevOps and already filled a lot of secrets.
My problem is that the pod annotation only allows specifying one secret per file while I need to use multiple secrets to fill in one file content via the vault template.
Below is my sample config, how can I specify database/mysql/replica1 and database/mongo/replica2 to make them both get injected?
vault.hashicorp.com/agent-inject-secret-prod.conf: “database/mysql/replica1”
vault.hashicorp.com/agent-inject-template-prod.conf: |
{{- with secret “database/mysql/replica1” -}}
config.mysql.user1={{ .Data.user1 }}{{- end }}
{{- with secret “database/mongo/replica2” -}}
config.mongo.user1={{ .Data.user1 }}{{- end }}