saikatharryc commented on issue #12331: URL: https://github.com/apache/airflow/issues/12331#issuecomment-733649588
@eshaingle okay, now I know you are using k8s and vault injector & airflow in k8s. ______ I have tried this generic way, where I have installed vault agent injector, and by mentioning the annotations I get the secret file mounted in the pod. later I source it, in the entry point (of the docker container in case the file is present) Later I realized the workers which are spawned for the dags, they don't get the annotations and I edited the config map to do so, after I realized somehow it's not sourcing since the entry point is not getting triggered. ___ **I found a way to make it work** using operators ___ I have used this one https://github.com/ricoberger/vault-secrets-operator instead of vault agent injector and what this does is basically, it creates a secret and you can use secret with the helm chart and access the values from the ENV. there are other ways too through the operator, check this out: https://github.com/banzaicloud/bank-vaults ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
