Limited Time Offer!

For Less Than the Cost of a Starbucks Coffee, Access All DevOpsSchool Videos on YouTube Unlimitedly.
Master DevOps, SRE, DevSecOps Skills!

Enroll Now

External Secrets Operator: Difference between ClusterExternalSecret Vs ExternalSecret

The main difference between a ClusterExternalSecret and an ExternalSecret is that a ClusterExternalSecret is a cluster-wide ExternalSecret that can be used to push an ExternalSecret to all namespaces in the cluster. An ExternalSecret is a namespaced resource that can only be used to push an ExternalSecret to a single namespace.

Another difference is that a ClusterExternalSecret can use a namespaceSelector to select specific namespaces to push the ExternalSecret to. An ExternalSecret does not have a namespaceSelector, so it will be pushed to all namespaces in the cluster by default.

Here is a table that summarizes the key differences between ClusterExternalSecrets and ExternalSecrets:

FeatureClusterExternalSecretExternalSecret
ScopeCluster-wideNamespaced
NamespaceSelectorYesNo
Use casesPushing a single ExternalSecret to all namespaces in the clusterPushing a single ExternalSecret to a specific namespace

Here are some examples of when you might use a ClusterExternalSecret:

  • To push a database password to all namespaces in the cluster.
  • To push an API key to all namespaces in the cluster.
  • To push a certificate to all namespaces in the cluster.

Here are some examples of when you might use an ExternalSecret:

  • To push a database password to a specific namespace.
  • To push an API key to a specific namespace.
  • To push a certificate to a specific namespace.
Rajesh Kumar
Follow me
Subscribe
Notify of
guest
0 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x