Skip to content

Authentication

Set up the communication between the Aiven Operator and the Aiven Platform by using a token stored in a Kubernetes Secret. You can then refer to the Secret's name on every custom resource in the authSecretRef field.

Prerequisites

An Aiven user account. Sign up for free.

Store a token in a Secret

1. Create an application user in the Aiven Console.

2. Create an application token for the application user.

Note

You can also use a personal token.

3. To create a Kubernetes Secret with the token, run:

kubectl create secret generic aiven-token --from-literal=token="TOKEN"

Where TOKEN is the token. This creates a Secret named aiven-token.

When managing your Aiven resources, you use the Secret in the authSecretRef field. The following is an example for a PostgreSQL service with the token:

apiVersion: aiven.io/v1alpha1
kind: PostgreSQL
metadata:
  name: pg-sample
spec:
  authSecretRef:
    name: aiven-token
    key: token
  [ ... ]