Vault-k8s: How to inject multiples secrets into one file

Hi,

I am on-board some legacy applications into EKS cluster, we have an existing vault server setup by DevOps and already filled a lot of secrets.

My problem is that the pod annotation only allows specifying one secret per file while I need to use multiple secrets to fill in one file content via the vault template.

Below is my sample config, how can I specify database/mysql/replica1 and database/mongo/replica2 to make them both get injected?

vault.hashicorp.com/agent-inject-secret-prod.conf: “database/mysql/replica1”
vault.hashicorp.com/agent-inject-template-prod.conf: |
{{- with secret “database/mysql/replica1” -}}
config.mysql.user1={{ .Data.user1 }}{{- end }}
{{- with secret “database/mongo/replica2” -}}
config.mongo.user1={{ .Data.user1 }}{{- end }}

Hi @misurin, did you ever manage to find an answer to this question? I need to solve the same problem.

Thanks!