Mounting Kubernetes Secret as volumes in Dynamic Engine containers
Instead of using Secret as environment variables, you can mount them as files in the
container filesystem, enabling your data integration tasks (including big data), Data Services, and
Route tasks to access credentials in configuration files.
Before you begin
About this task
Mounting Kubernetes Secret directly into containers as files provides file-based configuration. This is useful when:
- Your task expects configuration files (JSON, YAML, properties files)
- You need to mount certificates or keys as files
- You need to control file permissions and paths
Procedure
Results
Your tasks in the Dynamic Engine environment now have access to configuration files mounted from Kubernetes Secret.
When Secret values are updated, reload behavior differs by task type:
- For Data Integration (including Big Data) Job tasks, the next task run automatically uses updated Secret values.
- For Route and Data Services tasks, which run continuously, Secret changes are not automatically reloaded into running containers. To apply credential changes to these tasks, update the task in Talend Management Console to trigger a redeployment on your Kubernetes cluster.