This commit is contained in:
@@ -1,60 +1,37 @@
|
||||
apiVersion: external-secrets.io/v1beta1
|
||||
kind: ExternalSecret
|
||||
metadata:
|
||||
name: {{ include "..fullname" . }}-ex-gl-secret
|
||||
labels:
|
||||
{{- include "..labels" . | nindent 8 }}
|
||||
spec:
|
||||
refreshInterval: 4h
|
||||
secretStoreRef:
|
||||
kind: ClusterSecretStore
|
||||
name: az-cluster-store
|
||||
target:
|
||||
name: global-secrets
|
||||
creationPolicy: Orphan
|
||||
template:
|
||||
metadata:
|
||||
labels:
|
||||
app.kubernetes.io/managed-by: External-Secrets
|
||||
data:
|
||||
- secretKey: COMPOSER_AUTH
|
||||
remoteRef:
|
||||
key: secret/GITLAB-COMPOSER-AUTH
|
||||
- secretKey: SMTP_USER
|
||||
remoteRef:
|
||||
key: secret/SMTP-USER
|
||||
- secretKey: SMTP_PASS
|
||||
remoteRef:
|
||||
key: secret/SMTP-PASSWORD
|
||||
- secretKey: SMTP_HOST
|
||||
remoteRef:
|
||||
key: secret/SMTP-HOST
|
||||
- secretKey: WPC_REGISTRATION_SECRET
|
||||
remoteRef:
|
||||
key: secret/WPC-REGISTRATION-SECRET
|
||||
{{- if and .Values.secrets .Values.secrets.external }}
|
||||
{{- range .Values.secrets.external }}
|
||||
---
|
||||
apiVersion: external-secrets.io/v1beta1
|
||||
kind: ExternalSecret
|
||||
metadata:
|
||||
name: {{ include "..fullname" . }}-ex-pull-secret
|
||||
name: {{ include "..fullname" $ }}-ext-{{ .name }}
|
||||
labels:
|
||||
{{- include "..labels" . | nindent 8 }}
|
||||
{{- include "..labels" $ | nindent 8 }}
|
||||
spec:
|
||||
refreshInterval: 4h
|
||||
refreshInterval: {{ .refreshInterval | default "10h" }}
|
||||
secretStoreRef:
|
||||
{{- if .ref.clusterSecretStore }}
|
||||
kind: ClusterSecretStore
|
||||
name: az-cluster-store
|
||||
name: {{ .ref.clusterSecretStore }}
|
||||
{{- else }}
|
||||
kind: SecretStore
|
||||
name: {{ .ref.secretStore }}
|
||||
namespace: {{ .ref.secretStoreNamespace }}
|
||||
{{- end }}
|
||||
target:
|
||||
name: pull-secret
|
||||
name: {{ include "..fullname" $ }}-exts-{{ .name }}
|
||||
template:
|
||||
{{- if eq .type "docker"}}
|
||||
type: kubernetes.io/dockerconfigjson
|
||||
{{- end }}
|
||||
metadata:
|
||||
labels:
|
||||
app.kubernetes.io/managed-by: External-Secrets
|
||||
type: kubernetes.io/dockerconfigjson
|
||||
data:
|
||||
.dockerconfigjson: "{{`{{ .dockerconfig | toString }}`}}"
|
||||
creationPolicy: Orphan
|
||||
data:
|
||||
- secretKey: dockerconfig
|
||||
{{- range $v := .items }}
|
||||
- secretKey: {{ $v.target }}
|
||||
remoteRef:
|
||||
key: secret/CLDY-CR-PULL-TOKEN
|
||||
key: {{ $v.source }}
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
{{- end }}
|
||||
|
||||
Reference in New Issue
Block a user