Skip to content

Commit

Permalink
feat(external-secrets): clusterstore into main HR
Browse files Browse the repository at this point in the history 
Signed-off-by: Devin Buhl <[email protected]>
  • Loading branch information
@onedr0p
onedr0p committed Jan 12, 2025
1 parent 885d264 commit 8883031
Show file tree
Hide file tree
Showing 6 changed files with 40 additions and 2 deletions.
18 changes: 18 additions & 0 deletions kubernetes/apps/external-secrets/external-secrets/app/helm-values.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/external-secrets.io/clustersecretstore_v1beta1.json
apiVersion: external-secrets.io/v1beta1
kind: ClusterSecretStore
metadata:
name: onepassword-connect
spec:
provider:
onepassword:
connectHost: http://onepassword-connect.external-secrets.svc.cluster.local
vaults:
Kubernetes: 1
auth:
secretRef:
connectTokenSecretRef:
name: onepassword-connect-secret
key: token
namespace: external-secrets
6 changes: 6 additions & 0 deletions kubernetes/apps/external-secrets/external-secrets/app/helmrelease.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,11 @@ spec:
dependsOn:
- name: onepassword-connect
namespace: external-secrets
valuesFrom:
- kind: ConfigMap
name: external-secrets-helm-values
valuesKey: values.yaml
targetPath: extraObjects[0]
values:
installCRDs: true
replicaCount: 1
Expand All @@ -46,3 +51,4 @@ spec:
serviceMonitor:
enabled: true
interval: 1m

6 changes: 6 additions & 0 deletions kubernetes/apps/external-secrets/external-secrets/app/kustomization.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,3 +4,9 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
configMapGenerator:
- name: external-secrets-helm-values
files:
- values.yaml=./helm-values.yaml
configurations:
- kustomizeconfig.yaml
7 changes: 7 additions & 0 deletions kubernetes/apps/external-secrets/external-secrets/app/kustomizeconfig.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
---
nameReference:
- kind: ConfigMap
version: v1
fieldSpecs:
- path: spec/valuesFrom/name
kind: HelmRelease
3 changes: 3 additions & 0 deletions kubernetes/apps/flux-system/flux-operator/instance/helmrelease.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,9 @@ spec:
remediation:
strategy: rollback
retries: 3
dependsOn:
- name: flux-operator
namespace: flux-system
valuesFrom:
- kind: ConfigMap
name: flux-instance-helm-values
2 changes: 0 additions & 2 deletions kubernetes/apps/flux-system/flux-operator/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,8 +30,6 @@ spec:
commonMetadata:
labels:
app.kubernetes.io/name: *app
dependsOn:
- name: flux-operator
path: ./kubernetes/apps/flux-system/flux-operator/instance
prune: false # never should be deleted
sourceRef:
Expand Down

0 comments on commit 8883031

Please sign in to comment.