ConfigMap vs Secret
WHAT IT TESTS: Config-versus-sensitive-data separation. OUTLINE: ConfigMaps hold non-sensitive plain config; Secrets hold sensitive data, base64-encoded and treated specially (RBAC, optional encryption at rest).
WHAT IT TESTS: Whether you separate sensitive from non-sensitive config correctly. ANSWER OUTLINE: A ConfigMap stores non-confidential key-value configuration like feature flags, URLs, or tuning parameters. A Secret stores sensitive data such as passwords, tokens, and TLS keys; values are base64-encoded (encoding, not encryption) and Secrets get extra handling: tighter RBAC, optional encryption at rest, and they can be kept out of node disk. Choose Secrets for credentials, ConfigMaps for everything else.
Read the original → interview
- #kubernetes
- #configmap
- #secret
- #configuration
- #security
Get five bites like this every day.
Tezvyn delivers a daily feed of 60-second tech bites with quizzes to lock in what you learn.