diff --git a/docs/design/proposals/encryption-with-vault-tokens.md b/docs/design/proposals/encryption-with-vault-tokens.md index c8729a1e2..9fe832e03 100644 --- a/docs/design/proposals/encryption-with-vault-tokens.md +++ b/docs/design/proposals/encryption-with-vault-tokens.md @@ -233,20 +233,19 @@ stringData: KNSC2DVVXcCgkqcCgAwIBAgIwewrvx... ``` -Its also possible that a user can create a single secret for the certificates -and update the configuration to fetch certificates from a secret. +It is also possible for a user to create a single Secret that contains both +the client authentication and update the configuration to fetch the certificate +and key from the Secret. ```yaml --- apiVersion: v1 kind: secret metadata: - name: vault-certificates + name: vault-client-auth stringData: cert: | MIIC2DCCAcCgAwIBAgIBATANBgkqh... - cert: | - BATANBgkqcCgAwIBAgIBATANBAwI... key: | KNSC2DVVXcCgkqcCgAwIBAgIwewrvx... ```