Secret store

2026-01-12 02:18:03 +01:00
parent 7a5fc8a9e7
commit f9bf4a7f8b
3 changed files with 58 additions and 20 deletions
--- a/helm/homarr/dev/templates/vault-secretstore.yaml
+++ b/helm/homarr/dev/templates/vault-secretstore.yaml
@@ -0,0 +1,24 @@
+{{- if .Values.vault.enabled }}
+################
+# SECRET STORE #
+################
+---
+apiVersion: external-secrets.io/v1
+kind: SecretStore
+metadata:
+  name: vault-backend
+  namespace: {{ .Release.Namespace }}
+spec:
+  provider:
+    vault:
+      server: {{ .Values.vault.server }}
+      path: {{ .Values.vault.path | default "secret" }}
+      version: {{ .Values.vault.version | default "v2" }}
+      auth:
+        kubernetes:
+          mountPath: {{ .Values.vault.auth.kubernetes.mountPath }}
+          role: {{ .Values.vault.auth.kubernetes.role }}
+          serviceAccountRef:
+            name: {{ .Values.vault.auth.kubernetes.serviceAccountRef.name }}
+{{- end }}
+