https://github.com/stackabletech/secret-operator

Stackable operator for provisioning and distributing secrets
https://github.com/stackabletech/secret-operator

Last synced: 5 months ago
JSON representation

Stackable operator for provisioning and distributing secrets

• Host: GitHub
• URL: https://github.com/stackabletech/secret-operator
• Owner: stackabletech
• License: other
• Created: 2021-11-25T12:53:50.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2026-02-03T14:57:08.000Z (5 months ago)
• Last Synced: 2026-02-04T04:39:18.139Z (5 months ago)
• Language: Rust
• Homepage:
• Size: 2.38 MB
• Stars: 13
• Watchers: 6
• Forks: 7
• Open Issues: 46
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md
  • License: LICENSE

Awesome Lists containing this project

README

          



  



Stackable Secret Operator


[![Maintenance](https://img.shields.io/badge/Maintained%3F-yes-green.svg)](https://GitHub.com/stackabletech/secret-operator/graphs/commit-activity)

[![PRs Welcome](https://img.shields.io/badge/PRs-welcome-green.svg)](https://docs.stackable.tech/home/stable/contributor/index.html)

[![License OSL3.0](https://img.shields.io/badge/license-OSL3.0-green)](./LICENSE)

[Documentation](https://docs.stackable.tech/home/stable/secret-operator) | [Stackable Data Platform](https://stackable.tech/) | [Platform Docs](https://docs.stackable.tech/) | [Discussions](https://github.com/orgs/stackabletech/discussions) | [Discord](https://discord.gg/7kZ3BNnCAF)

This is a Kubernetes Operator to provision and inject secrets for Kubernetes pods. Compared to Kubernetes' native secret mounts, this permits secrets to be selected dynamically based on properties of the `Pod`.

It is part of the Stackable Data Platform, a curated selection of the best open source data apps like Apache Kafka, Apache Druid, Trino or Apache Spark, [all](#other-operators) working together seamlessly. Based on Kubernetes, it runs everywhere – [on prem or in the cloud](#supported-platforms).

## Installation

You can install the operator using [stackablectl or helm](https://docs.stackable.tech/home/stable/secret-operator/getting_started/installation).

Read on to get started with it, or see it in action in one of our [demos](https://stackable.tech/en/demos/).

## Building

As a user you do not need to build the operator yourself, but for development purposes you can read the [build instructions](./BUILDING.md) to learn how to build the operator.

## Getting Started

You can follow this [tutorial](https://docs.stackable.tech/home/stable/secret-operator/getting_started/first_steps) .

## Documentation

The stable documentation for this operator can be found in our [Stackable Data Platform documentation](https://docs.stackable.tech/home/stable/secret-operator).

If you are interested in the most recent state of this repository, check out the [nightly docs](https://docs.stackable.tech/home/nightly/secret-operator) instead.

The documentation for all Stackable products can be found at [docs.stackable.tech](https://docs.stackable.tech).

If you have a question about the Stackable Data Platform, contact us via our [homepage](https://stackable.tech/) or ask a public question in our [Discussions forum](https://github.com/orgs/stackabletech/discussions).

## What does it do?

The Secret Operator provisions and mounts secrets, but unlike the default Kubernetes Secret mechanism, Secrets can be created and mounted dynamically based on Pod properties. The Operator supports:

* Generating TLS certificates on demand and mounting them

## How it works

The Secret Operator is deployed as a DaemonSet and provides a CSI to mount files directly into Pods.

  

The Secret Operator by [Stackable](https://stackable.tech/).

This is a Kubernetes Operator to provision and inject secrets for Kubernetes Pods. It is part of the [Stackable Data Platform](https://stackable.tech/), a curated selection of the best open source data apps like Kafka, Druid, Trino or Spark, all working together seamlessly. Based on Kubernetes, it runs everywhere – on prem or in the cloud.

## About The Stackable Data Platform

This operator is written and maintained by [Stackable](https://stackable.tech) and it is part of a larger data platform.

![Stackable Data Platform Overview](./.readme/static/borrowed/stackable_overview.png)

Stackable makes it easy to operate data applications in any Kubernetes cluster.

The data platform offers many operators, new ones being added continuously. All our operators are designed and built to be easily interconnected and to be consistent to work with.

The [Stackable GmbH](https://stackable.tech/) is the company behind the Stackable Data Platform. Offering professional services, paid support plans and custom development.

We love open-source!

## Supported Platforms

We develop and test our operators on the following cloud platforms:

* AKS on Microsoft Azure

* EKS on Amazon Web Services (AWS)

* GKE on Google Cloud Platform (GCP)

* [IONOS Cloud Managed Kubernetes](https://cloud.ionos.com/managed/kubernetes)

* K3s

* Kubernetes (for an up to date list of supported versions please check the release notes in our [docs](https://docs.stackable.tech))

* Red Hat OpenShift

## Other Operators

These are the operators that are currently part of the Stackable Data Platform:

* [Stackable Operator for Apache Airflow](https://github.com/stackabletech/airflow-operator)

* [Stackable Operator for Apache Druid](https://github.com/stackabletech/druid-operator)

* [Stackable Operator for Apache HBase](https://github.com/stackabletech/hbase-operator)

* [Stackable Operator for Apache Hadoop HDFS](https://github.com/stackabletech/hdfs-operator)

* [Stackable Operator for Apache Hive](https://github.com/stackabletech/hive-operator)

* [Stackable Operator for Apache Kafka](https://github.com/stackabletech/kafka-operator)

* [Stackable Operator for Apache NiFi](https://github.com/stackabletech/nifi-operator)

* [Stackable Operator for OpenSearch](https://github.com/stackabletech/opensearch-operator)

* [Stackable Operator for Apache Spark](https://github.com/stackabletech/spark-k8s-operator)

* [Stackable Operator for Apache Superset](https://github.com/stackabletech/superset-operator)

* [Stackable Operator for Trino](https://github.com/stackabletech/trino-operator)

* [Stackable Operator for Apache ZooKeeper](https://github.com/stackabletech/zookeeper-operator)

And our internal operators:

* [Commons Operator](https://github.com/stackabletech/commons-operator)

* [Listener Operator](https://github.com/stackabletech/listener-operator)

* [OpenPolicyAgent Operator](https://github.com/stackabletech/opa-operator)

* [Secret Operator](https://github.com/stackabletech/secret-operator)

## Contributing

Contributions are welcome.

Follow our [Contributors Guide](https://docs.stackable.tech/home/stable/contributor/index.html) to learn how you can contribute.

All contributors will have to sign a [Contributor License Agreement](https://github.com/stackabletech/.github/blob/main/cla.md).

This is enforced automatically when you submit a Pull Request where a bot will guide you through the process.

## License

[Open Software License version 3.0](./LICENSE).

## Support

Get started with the community edition! If you want professional support, [we offer subscription plans and custom licensing](https://stackable.tech/en/plans/).

## Sponsor

If you want to support our work but don't need professional support please consider [sponsoring](https://github.com/sponsors/stackabletech) our work.