Kubernetes: Populate certificates into keystores
RedHat has a tutorial on how to do this on OpenShift:
https://developers.redhat.com/blog/2017/11/22/dynamically-creating-java-keystores-openshift/
It uses OpenShifts built in CA to actually generate and supply the certificate, so if using vanilla k8s you'll need to do that yourself, but once you have the certificate in a file on the pod, the method is exactly the same.