
How to create secrets using Kubernetes Python client?

I have been trying to play around with creating secrets for Kubernetes cluster using the python client. I keep getting an error that says

Traceback (most recent call last):
File "", line 19, in <module>
api_response = v1.create_namespaced_secret(namespace, body)
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/apis/", line 7271, in create_namespaced_secret
(data) = self.create_namespaced_secret_with_http_info(namespace, body, **kwargs)
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/apis/", line 7361, in create_namespaced_secret_with_http_info
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/", line 335, in call_api
_preload_content, _request_timeout)
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/", line 148, in __call_api
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/", line 393, in request
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/", line 287, in POST
File "/usr/local/lib/python3.6/site-packages/kubernetes/client/", line 240, in request
raise ApiException(http_resp=r) (400)
Reason: Bad Request
HTTP response headers: HTTPHeaderDict({'Content-Type': 'application/json', 'Date': 'Mon, 16 Oct 2017 04:17:35 GMT', 'Content-Length': '234'})
HTTP response body: {"kind":"Status","apiVersion":"v1","metadata":{},"status":"Failure","message":"none in version \"v1\" cannot be handled as a Secret: no kind \"none\" is registered for version \"v1\"","reason":"BadRequest","code":400}

This is my code that I am trying to execute to create a secret.

from __future__ import print_function
import time
import kubernetes.client
from pprint import pprint
from kubernetes import client, config

v1 = client.CoreV1Api()
namespace = 'kube-system'
metadata = {'name': 'pk-test-tls', 'namespace': 'kube-system'}
data=  {'tls.crt': '###BASE64 encoded crt###', 'tls.key': '###BASE64 encoded Key###'}
api_version = 'v1'
kind = 'none'
body = kubernetes.client.V1Secret(api_version, data , kind, metadata, 

api_response = v1.create_namespaced_secret(namespace, body)

What am I missing here?


  • Almost everything that you have written is alright but pay attention to the message received from kube-apiserver:

    HTTP response body: {"kind":"Status","apiVersion":"v1","metadata":{},"status":"Failure","message":"none in version "v1" cannot be handled as a Secret: no kind "none" is registered for version "v1"","reason":"BadRequest","code":400}

    Especially no kind "none". Is it just typo or do you have something on your mind here?

    You have list of kinds here

    If you change kind to "Secret" then everything will be working fine.