Undercloud/k8s-apps
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
636aeeec5edd3fc94c50c213aa1c703a59e3b2e2
k8s-apps/openbao
History
shodan 636aeeec5e openbao
2026-03-29 15:03:23 +00:00
..
ingress.yaml
openbao
2026-03-29 15:03:23 +00:00
namespace.yaml
openbao
2026-03-29 15:03:23 +00:00
openbao.yaml
openbao
2026-03-29 15:03:23 +00:00
README.md
more apps
2026-03-28 13:20:19 +00:00

README.md

🔐 OpenBao

Description

OpenBao is a centralized secrets management system designed to securely store, manage, and distribute sensitive data such as passwords, API keys, and certificates.
It provides dynamic secrets, encryption-as-a-service, and fine-grained access control.

Website

https://openbao.org

Kubernetes Notes

  • Requires persistent storage (data loss = secrets loss)
  • Use Kubernetes auth method for pod access (service account tokens)
  • Seal/unseal mechanism must be handled (auto-unseal recommended for production)
  • Avoid storing root tokens in manifests → use external secret bootstrap
  • Typically deployed via Helm chart
  • Network policies recommended (restrict access to API)