Storing s3 accessKeyID and secretAccessKey securely

hibaos · July 24, 2023, 6:01pm

Hi,

I’m deploying Loki with Grafana Community Kubernetes Helm Charts | helm-charts and using the following configuration for the S3 auth:

...
loki:
  storage:
    type: s3
    s3:
      accessKeyId: <grafana-loki-s3-acceskeyid>
      secretAccessKey: <grafana-loki-s3-secretaccesskey>
	...

My question is:
How can I read the values for accessKeyId and secretAccessKey from a k8s secret?

Supposing I have the following secret, how do I use it in the above example?:

apiVersion: v1
kind: Secret
metadata:
  name: loki-secrets
  namespace: grafana-loki
data:
  grafana-loki-s3-accessKeyId: **************
  grafana-loki-s3-secretAccessKey: **************
type: Opaque

TIA!

system · July 23, 2024, 6:02pm

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Secrets management, the entire config as a secret? Grafana Loki templating , loki , configuration , helm	6	685	March 6, 2024
How can we correctly configure Loki helm values file when using IRSA to access s3 bucket? Grafana Loki	2	299	March 24, 2024
Loki integration with S3 for using ServiceAccount on K8s Grafana Loki	2	682	November 18, 2023
Promtail basic auth using kubernetes secret Grafana Loki	3	1922	January 18, 2023
[promtail] basic_auth problem using Kubernetes secret in the Helm chart Grafana Loki promtail	1	303	January 9, 2024

Storing s3 accessKeyID and secretAccessKey securely

Related topics