Use a secret in your workloadΒΆ
This how-to guide shows you how to reference and use a secret in your workload.
A secret can be made available as environment variables or files, or both.
PrerequisitesΒΆ
- You're part of a NAIS team
- You have previously created a secret for your team
- A Github repository where the NAIS team has access
- The repository contains a valid workload manifest (
nais.yaml
)
Expose secret as environment variablesΒΆ
-
Add a reference to the secret in the workload's
nais.yaml
manifest.For a secret named
cool-cat
, the manifest should contain these additional lines: -
Commit and push the changes to version control, and deploy your workload as usual.
-
Each key-value pair is now available in your workload's runtime as an environment variable.
For example, for a key named
SOME_KEY
:
Mount secret as filesΒΆ
-
Add a reference to the secret in the workload's
nais.yaml
manifest.For a secret named
cool-cat
, the manifest should contain these additional lines: -
Commit and push the changes to version control, and deploy your workload as usual.
-
Each key-value pair is now available as a file in your workload the specified mount path, e.g:
For example, a key named
some-key
will be available as a file at the following path: