UNPKG

cdk8s-plus-25

Version:

cdk8s+ is a software development framework that provides high level abstractions for authoring Kubernetes applications. cdk8s-plus-25 synthesizes Kubernetes manifests for Kubernetes 1.25.0

github.com/cdk8s-team/cdk8s-plus

cdk8s-team/cdk8s-plus

36 lines (23 loc) 1.01 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# ServiceAccount Use service accounts to provide an identity for pods. !!! tip "" [API Reference](../../reference/cdk8s-plus-25/typescript.md#serviceaccount) ## Use an existing `ServiceAccount` To reference a service account created outside of your deployment definition, use the following. Note that this does not create a new object, and will therefore not be included in the resulting manifest. ```typescript import * as kplus from 'cdk8s-plus-25'; const serviceAccount = kplus.ServiceAccount.fromServiceAccountName('aws-service'); ``` ## Allowing access to secrets To create a new service account, and give it access to some secrets, use the following: ```typescript import * as kplus from 'cdk8s-plus-25'; import * as k from 'cdk8s'; const app = new k.App(); const chart = new k.Chart(app, 'Chart'); const awsCreds = kplus.Secret.fromSecretName('aws-creds'); const awsService = new kplus.ServiceAccount(chart, 'AWS'); // give access to the aws creds secret. awsService.addSecret(awsCreds); ```