How to mount multiple files / secrets into common directory in kubernetes?

Question

I've multiple secrets created from different files. I'd like to store all of them in common directory /var/secrets/. Unfortunately, I'm unable to do that because kubernetes throws 'Invalid value: "/var/secret": must be unique error during pod validation step. Below is an example of my pod definition.

apiVersion: v1 kind: Pod metadata:   labels:     run: alpine-secret   name: alpine-secret spec:   containers:   - command:     - sleep     - "3600"     image: alpine     name: alpine-secret     volumeMounts:     - name: xfile       mountPath: "/var/secrets/"       readOnly: true     - name: yfile       mountPath: "/var/secrets/"       readOnly: true   volumes:   - name: xfile     secret:       secretName: my-secret-one   - name: yfile     secret:       secretName: my-secret-two 

How can I store files from multiple secrets in the same directory?

Answer 1

Projected Volume

You can use a projected volume to have two secrets in the same directory

Example

apiVersion: v1 kind: Pod metadata:   labels:     run: alpine-secret   name: alpine-secret spec:   containers:   - command:     - sleep     - "3600"     image: alpine     name: alpine-secret     volumeMounts:     - name: xyfiles       mountPath: "/var/secrets/"       readOnly: true   volumes:   - name: xyfiles     projected:       sources:       - secret:           name: my-secret-one       - secret:           name: my-secret-two 

Answer 2

(EDIT: Never mind - I just noticed @Jonas gave the same answer earlier. +1 from me)

Starting with Kubernetes v1.11+ it is possible with projected volumes:

A projected volume maps several existing volume sources into the same directory.

Currently, the following types of volume sources can be projected:

• secret
• downwardAPI
• configMap
• serviceAccountToken

This is an example for "... how to use a projected Volume to mount several existing volume sources into the same directory".