apiVersion: extensions/v1beta1 kind: Deployment metadata: name: atst spec: template: spec: volumes: - name: nginx-secret flexVolume: options: usepodidentity: "false" usevmmanagedidentity: "true" vmmanagedidentityclientid: $VMSS_CLIENT_ID keyvaultname: "cz-jedidev-keyvault" keyvaultobjectnames: "dhparam4096;ATATCERT;ATATCERT" - name: flask-secret flexVolume: options: usepodidentity: "false" usevmmanagedidentity: "true" vmmanagedidentityclientid: $VMSS_CLIENT_ID keyvaultname: "cz-jedidev-keyvault" keyvaultobjectnames: "AZURE-STORAGE-KEY;MAIL-PASSWORD;PGPASSWORD;REDIS-PASSWORD;SECRET-KEY" --- apiVersion: extensions/v1beta1 kind: Deployment metadata: name: atst-worker spec: template: spec: volumes: - name: flask-secret flexVolume: options: usepodidentity: "false" usevmmanagedidentity: "true" vmmanagedidentityclientid: $VMSS_CLIENT_ID keyvaultname: "cz-jedidev-keyvault" keyvaultobjectnames: "AZURE-STORAGE-KEY;MAIL-PASSWORD;PGPASSWORD;REDIS-PASSWORD;SECRET-KEY" --- apiVersion: extensions/v1beta1 kind: Deployment metadata: name: atst-beat spec: template: spec: volumes: - name: flask-secret flexVolume: options: usepodidentity: "false" usevmmanagedidentity: "true" vmmanagedidentityclientid: $VMSS_CLIENT_ID keyvaultname: "cz-jedidev-keyvault" keyvaultobjectnames: "AZURE-STORAGE-KEY;MAIL-PASSWORD;PGPASSWORD;REDIS-PASSWORD;SECRET-KEY" --- apiVersion: batch/v1beta1 kind: CronJob metadata: name: crls spec: jobTemplate: spec: template: spec: volumes: - name: flask-secret flexVolume: options: usepodidentity: "false" usevmmanagedidentity: "true" vmmanagedidentityclientid: $VMSS_CLIENT_ID keyvaultname: "cz-jedidev-keyvault" keyvaultobjectnames: "AZURE-STORAGE-KEY;MAIL-PASSWORD;PGPASSWORD;REDIS-PASSWORD;SECRET-KEY"