k8s.io/test-infra@v0.0.0-20240520184403-27c6b4c223d8/experiment/clustersecretbackup/README.md

k8s.io/test-infra@v0.0.0-20240520184403-27c6b4c223d8/experiment/clustersecretbackup/README.md (about)

     1  # clustersecretbackup
     2  
     3  Cluster secret backup is a tool backing up secrets in a cluster in Google Secret
     4  Manager.
     5  
     6  ## Prerequisite
     7  
     8  - Authenticate with GCP, could be done by either of:
     9    - Run `gcloud auth login && gcloud auth application-default login`
    10    - Set `GOOGLE_APPLICATION_CREDENTIALS` if prefer to use service account key file
    11  - Already authenticated with cluster to be backed up
    12  
    13  ## Usage
    14  
    15  This tool can be invoked locally, by:
    16  
    17  - `--project`: The GCP project that secrets will be backed up in.
    18  - `--cluster-context`: The cluster context name that need to be backed up, must be full form such as <PROVIDER>_<PROJECT>_<ZONE>_<CLUSTER>.
    19  - `--namespace`: The namespace(s) to be backed up, can be passed in repeatedly.
    20  - `--update`: Controls whether update existing secret or not, if false then
    21    secret will not be updated when the secret already exist in gsm.
    22  - `--dryrun`: Controls whether write to Google secret manager or not.