[Book] [OK!] GitOps Cookbook: 08. Advanced Topics: 8.1 Encrypt Sensitive Data (Sealed Secrets)

$ kubectl create secret generic pacman-secret \
--from-literal=user=pacman \
--from-literal=pass=pacman

$ kubectl get secret pacman-secret -o yaml

$ kubectl get secret pacman-secret -o yaml \
  | kubeseal -o yaml > pacman-sealedsecret.yaml

$ cat pacman-sealedsecret.yaml

$ argocd app create pacman \
--repo https://github.com/gitops-cookbook/pacman-kikd-manifests.git \
--path 'k8s/sealedsecrets' \
--dest-server https://kubernetes.default.svc \
--dest-namespace default \
--sync-policy auto

$ argocd app list