Deploy secret management solution (DEV environment)

Problem

The services we'll be running require access to configuration data, access tokens, cryptographic keys, and other confidential data.
For obvious reasons, those should be kept securely.
See https://cheatsheetseries.owasp.org/cheatsheets/Secrets_Management_Cheat_Sheet.html

Goal

Deploy the secret management solution chosen in #354

ACs

The chosen secret management solution has been deployed in the cluster (DEV environment).
ArgoCD has been configured to integrate with the secret management solution.
Existing secrets have been migrated to the secret management solution.
Existing secrets have been rotated.
New secret management solution does not affect CI/CD deployments.
At least, three team members have access to the secret management solution.

Notes/ resources

Use https://argocd-vault-plugin.readthedocs.io/en/stable/backends/ for integration with ArgoCD

Who needs to be involved / informed

reviewers:
involved: team::infra-and-ops
informed:

Edited Dec 02, 2025 by Marco Holz