Skip to content

feat(secrets-management): add cloud-kms references for aws and gcp#66

Draft
rawkode wants to merge 3 commits into
mainfrom
feat-secrets-management-cloud-kms
Draft

feat(secrets-management): add cloud-kms references for aws and gcp#66
rawkode wants to merge 3 commits into
mainfrom
feat-secrets-management-cloud-kms

Conversation

@rawkode
Copy link
Copy Markdown

@rawkode rawkode commented Apr 8, 2026
edited
Loading

Summary

  • add cloud-kms reference docs under secrets-management
  • add AWS reference with AWS KMS + Secrets Manager + ESO manifests and Terraform
  • add GCP reference with Cloud KMS + Secret Manager + ESO manifests and Terraform
  • automate CKS OIDC issuer wiring via Terraform by reading cks_service_account_oidc_issuer_url from CKS terraform remote state
  • add optional automation for AWS OIDC provider creation and GCP WIF pool/provider creation

Validation

  • terraform fmt checks passed for AWS and GCP Terraform directories
  • terraform validate is blocked in this environment by Terraform/provider runtime compatibility for installed provider plugins
  • runtime manifest validation requires connected cluster auth

@rawkode rawkode force-pushed the feat-secrets-management-cloud-kms branch from dbb6677 to 7992c58 Compare April 8, 2026 10:14
@rawkode rawkode changed the base branch from feat-secrets-management-infisical to main April 8, 2026 10:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rawkode