-
-
Notifications
You must be signed in to change notification settings - Fork 304
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Sealed Secret in Kubernetes Challenge #1452
base: master
Are you sure you want to change the base?
Conversation
@commjoen Please Guide me further in which File i need to mention |
Great start! let's go to the next steps!
|
…p in configuring k8s for bitnami secrets
…t.sh and changes made in readme
79e6ade
to
f49cc18
Compare
So i did what you said sir @commjoen , but still the challenge is not visible when i run using |
We will have to build a new container to show it in k8s. I can do that tomorrow. If you run it locally: is the challenge then visible? |
Hi @commjoen ![]() I even tried to run ![]() these occurred so abruptly, even without changing anything |
It looks like you have the wrong JDK version: can you upgrade to the latest please?🙏 |
![]() im using latest openJDK 22 version |
short-name: "challenge-48" | ||
sources: | ||
- class-name: "org.owasp.wrongsecrets.challenges.kubernetes.Challenge48" | ||
explanation: "explanations/challenge48.adoc" | ||
hint: "explanations/challenge48_hint.adoc" | ||
reason: "explanations/challenge48_reason.adoc" | ||
environments: [ *k8s, *gcp, *aws, *azure ] | ||
difficulty: *normal | ||
category: *secrets | ||
ctf: | ||
enabled: false | ||
missing_environment: "explanations/missing_k8s.adoc" |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
short-name: "challenge-48" | |
sources: | |
- class-name: "org.owasp.wrongsecrets.challenges.kubernetes.Challenge48" | |
explanation: "explanations/challenge48.adoc" | |
hint: "explanations/challenge48_hint.adoc" | |
reason: "explanations/challenge48_reason.adoc" | |
environments: [ *k8s, *gcp, *aws, *azure ] | |
difficulty: *normal | |
category: *secrets | |
ctf: | |
enabled: false | |
missing_environment: "explanations/missing_k8s.adoc" | |
short-name: "challenge-48" | |
sources: | |
- class-name: "org.owasp.wrongsecrets.challenges.kubernetes.Challenge48" | |
explanation: "explanations/challenge48.adoc" | |
hint: "explanations/challenge48_hint.adoc" | |
reason: "explanations/challenge48_reason.adoc" | |
environments: [ *k8s, *gcp, *aws, *azure ] | |
difficulty: *normal | |
category: *secrets | |
ctf: | |
enabled: false | |
missing_environment: "explanations/missing_k8s.adoc" |
it looks like it is failing due to identation: can you make short-name
and the rest allign with name
place?
and then, with docker for desktop enabled, use ./mvnw clean install
to get it running again.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I have created a container with tag challenge48-no-vault
based on the current challenge-code.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
in order to use it, can you create teh following modifications to your k8s deployment yamls? in https://github.com/Shubham-Patel07/wrongsecrets/blob/fix/Issue858/k8s/secret-challenge-vault-deployment.yml#L53 use - image: jeroenwillemsen/wrongsecrets:challenge48-k8s-vault
and in https://github.com/Shubham-Patel07/wrongsecrets/blob/fix/Issue858/k8s/secret-challenge-deployment.yml#L31 use - image: jeroenwillemsen/wrongsecrets:challenge48-no-vault
this should load up the container with the new challenge
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
after this, you will have to updat the k8s deployment manifest to use the sealed secret under the env-var SEALED_SECRET_ANSWER
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
hi @commjoen,
I tried using the challenge48-no-vault
and challenge48-k8s-vault
but still the challenge is not available please can you check containers again
… made reccomended changes in challenge manifests to override the env-var in application.properties
83d0b7a
to
5c81840
Compare
The javacode is fixed, now all we need is the correct override of the env var
|
What kind of changes does this PR include?
Relation
Fixes part of #858
Description
Added new challenge Related to Bitnami Sealed Secrets
Checklist: