Object Storage Secret Specification

This page explains the structure and keys of secrets generated by the creation of ObjectBucket instances.

Get the required secrets to use your bucket from other applications.

$ oc get secrets objectbucket-creds -oyaml

The output of the command above is a secret specification with the following structure:

apiVersion: v1
kind: Secret
metadata:
  name: objectbucket-creds
data:
  AWS_ACCESS_KEY_ID: OFk4Qzc0TzFHME9PNjkyWkFGRjU= (1)
  AWS_REGION: cm1h (2)
  AWS_SECRET_ACCESS_KEY: dFg5S0F4dzBQdXc0c0EwbWZUQXpiamxLNFRvZUpZNXozMVJxS1lhcg== (3)
  BUCKET_NAME: bXktcmV2aWV3LWJ1Y2tldA== (4)
  ENDPOINT: b2JqZWN0cy5ybWEuY2xvdWRzY2FsZS5jaA== (5)
1 Access key ID of the bucket.
2 Region where the bucket has been provisioned, where cm1h == base64(rma).
3 Secret access key for the bucket.
4 Bucket name.
5 Endpoint, often also including the region.
All data fields are Base64-encoded, like any other Kubernetes secret.