Use SOPS for value encryption

If you would like sensitive information in the values repository to be encrypted, you will have to use sops.

Use SOPS with AGE

AGE is a simple, modern, and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

To install with SOPS/Age, use the following values:

kms:
  sops:
    provider: "age"
#     age:
#       publicKey: ''
#       privateKey: ''

Use SOPS with an external Key Management Service (KMS)

Find quickstart documentation below on how to setup KMS access per supported provider:

Follow the instructions of the provider of your choosing and jot down the credentials obtained for the next steps.

To install with SOPS/KMS, use the following values:

kms:
  sops:
    provider: "" # provider can be one of aws|azure|google|vault
#     aws:
#       keys: ''
#       accessKey: ''
#       secretKey: ''
#       region: ''
#     azure:
#       keys: ''
#       tenantID: ''
#       clientID: ''
#       clientSecret: ''
#     google:
#       keys: ''
#       accountJson: ''
#       project: ''
#     vault:
#       token: ''

Use SOPS with AGE​

Use SOPS with an external Key Management Service (KMS)​

Use SOPS with AGE

Use SOPS with an external Key Management Service (KMS)