Document how a secrets server like Vault or Keywhiz might fit into Kubernetes

2015-06-01 20:10:45 -07:00 · 2015-06-01 20:10:45 -07:00 · d7efc88b7d
parent 5520386b18
commit d7efc88b7d
1 changed files with 2 additions and 1 deletions
--- a/docs/design/secrets.md
+++ b/docs/design/secrets.md
@ -148,7 +148,8 @@ have different preferences for the central store of secret data.  Some possibili

 1.  An etcd collection alongside the storage for other API resources
 2.  A collocated [HSM](http://en.wikipedia.org/wiki/Hardware_security_module)
-3.  An external datastore such as an external etcd, RDBMS, etc.
+3.  A secrets server like [Vault](https://www.vaultproject.io/) or [Keywhiz](https://square.github.io/keywhiz/)
+4.  An external datastore such as an external etcd, RDBMS, etc.

 #### Size limit for secrets