kubernetes/argocd
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
950bb7853f5c7569d727e86b3f26c9126d7d21ae
argocd/helm/cert-manager-webhook-ovh/ops/templates/externalsecret-ovh-credentials.yaml
Melvin GABALI 8e0e49589d update 2
2026-01-22 22:22:19 +01:00

71 lines
3.3 KiB
YAML
Raw Blame History

{{- if .Values.externalSecret.enabled }}
{{- if and .Values.externalSecret.vault.server .Values.externalSecret.secretPath .Values.externalSecret.remoteRef.applicationKey .Values.externalSecret.remoteRef.applicationSecret .Values.externalSecret.remoteRef.consumerKey }}
---
# ExternalSecret pour cert-manager-webhook-ovh-ops
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: {{ .Values.externalSecret.secretName | default "cert-manager-webhook-ovh" }}
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: cert-manager-webhook-ovh
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/managed-by: {{ .Release.Service }}
spec:
refreshInterval: {{ .Values.externalSecret.refreshInterval | default "1h" }}
secretStoreRef:
name: {{ .Values.externalSecret.vault.secretStoreName | default "vault-backend" }}
kind: ClusterSecretStore
target:
name: {{ .Values.externalSecret.secretName | default "cert-manager-webhook-ovh" }}
creationPolicy: Owner
data:
- secretKey: application-key
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.applicationKey }}
- secretKey: application-secret
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.applicationSecret }}
- secretKey: consumer-key
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.consumerKey }}
---
# ExternalSecret pour cert-manager-ops (partage du même secret)
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: {{ .Values.externalSecret.secretName | default "cert-manager-webhook-ovh" }}
namespace: {{ index .Values "cert-manager-webhook-ovh" "certManager" "namespace" | default "cert-manager-ops" }}
labels:
app.kubernetes.io/name: cert-manager-webhook-ovh
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/managed-by: {{ .Release.Service }}
spec:
refreshInterval: {{ .Values.externalSecret.refreshInterval | default "1h" }}
secretStoreRef:
name: {{ .Values.externalSecret.vault.secretStoreName | default "vault-backend" }}
kind: ClusterSecretStore
target:
name: {{ .Values.externalSecret.secretName | default "cert-manager-webhook-ovh" }}
creationPolicy: Owner
data:
- secretKey: application-key
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.applicationKey }}
- secretKey: application-secret
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.applicationSecret }}
- secretKey: consumer-key
remoteRef:
key: {{ .Values.externalSecret.secretPath | default "cert-manager-webhook-ovh" }}
property: {{ .Values.externalSecret.remoteRef.consumerKey }}
{{- else }}
{{- fail "External Secrets est activé mais la configuration est incomplète. Veuillez définir externalSecret.vault.server, externalSecret.secretPath et tous les remoteRef (applicationKey, applicationSecret, consumerKey)" }}
{{- end }}
{{- end }}
Reference in New Issue View Git Blame Copy Permalink