You can securely use secrets like passwords in your helm deployments via TrueFoundry. Here’s how to set up and use TrueFoundry secrets in helm deployments.

Create a Secret in TrueFoundry

Follow the instructions in the TrueFoundry Secrets Guide to create a new secret.
Once created, copy the Fully Qualified Name (FQN) of the secret (e.g., tfy-secret://truefoundry:test-helm-secret:password).

Creating Kubernetes Secrets in Helm Deployments

There are two ways to create Kubernetes secrets in your helm deployments:

1. Using Custom Kubernetes Objects

We can create a custom Kubernetes secret object and use the TrueFoundry secret FQN when setting the value.

Creating secrets using custom Kubernetes objects

For detailed instructions on creating custom Kubernetes objects, see the Custom Kubernetes Objects Guide.

2. Using Kustomize

We can use additional manifess section of Kustomize to create a Kubernetes secret object and use the TrueFoundry secret FQN when setting the value.

Creating secrets using Kustomize

For more information on using Kustomize, refer to the Kustomize documentation. Note: You can use TrueFoundry secret in both data and stringData fields of Kubernetes secret. For data fields, you just need to base64 encode the value when creating the TrueFoundry secret.