Secret Generator: Implement API interface for Kubernetes Secret resources
This is the implementation of the Kubernetes interface module. It connects the Kubernetes API for Secrets and Secret Generator core module.
This module can:
- Parse annotations of Secret resources and use them for specification of secret generators that core module provides.
- Load the secret content, that core module generates with based on the specification, into Secret resources.
Acceptance criteria
-
A list of recognized annotations is defined and documented. Annotations start with secrets.gitlab.io/
prefix for namespacing. -
An implementation that accepts a Secret data type and: - Parses its annotations and secret type
- Selects a suitable secret generator based on the parsed specification
- Generates the secret content and loads it into the Secret resource
- The implementation does not concern itself with reading and writing Secret resources from cluster API.