From 752efb3e8a4275c653701c0a84e2bb84b4ef5546 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Tue, 25 Jul 2023 09:26:42 -0500 Subject: [PATCH] update --- authentik/templates/secrets.yaml | 23 +++-------------------- bitwarden/templates/secrets.yaml | 21 ++------------------- cert-manager/templates/sealedsecret.yaml | 17 +++++++++++++++++ durpapi/templates/secrets.yaml | 17 ----------------- 4 files changed, 22 insertions(+), 56 deletions(-) diff --git a/authentik/templates/secrets.yaml b/authentik/templates/secrets.yaml index 36740c6..07b7747 100644 --- a/authentik/templates/secrets.yaml +++ b/authentik/templates/secrets.yaml @@ -1,11 +1,11 @@ apiVersion: external-secrets.io/v1beta1 kind: ExternalSecret metadata: - name: vault-authentik + name: authentik-secret spec: secretStoreRef: - name: vault-authentik - kind: SecretStore + name: vault + kind: ClusterSecretStore target: name: db-pass data: @@ -26,20 +26,3 @@ spec: key: secrets/authentik/database property: dbpass - ---- - -apiVersion: external-secrets.io/v1beta1 -kind: SecretStore -metadata: - name: vault-authentik -spec: - provider: - vault: - server: "http://vault.vault.svc.cluster.local:8200" - path: "secrets" - version: "v2" - auth: - kubernetes: - mountPath: "kubernetes" - role: "external-secrets" \ No newline at end of file diff --git a/bitwarden/templates/secrets.yaml b/bitwarden/templates/secrets.yaml index 629afec..7a8d858 100644 --- a/bitwarden/templates/secrets.yaml +++ b/bitwarden/templates/secrets.yaml @@ -4,8 +4,8 @@ metadata: name: bitwarden-secret spec: secretStoreRef: - name: vault-bitwarden - kind: SecretStore + name: vault + kind: ClusterSecretStore target: name: bitwarden-secret data: @@ -14,20 +14,3 @@ spec: key: secrets/bitwarden/admin property: ADMIN_TOKEN ---- - -apiVersion: external-secrets.io/v1beta1 -kind: SecretStore -metadata: - name: vault-bitwarden -spec: - provider: - vault: - server: "http://vault.vault.svc.cluster.local:8200" - path: "secrets" - version: "v2" - auth: - kubernetes: - mountPath: "kubernetes" - role: "external-secrets" - diff --git a/cert-manager/templates/sealedsecret.yaml b/cert-manager/templates/sealedsecret.yaml index d00e1a1..a6bd33e 100644 --- a/cert-manager/templates/sealedsecret.yaml +++ b/cert-manager/templates/sealedsecret.yaml @@ -13,4 +13,21 @@ spec: creationTimestamp: null name: cloudflare-api-token-secret namespace: cert-manager +--- + +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: cloudflare-api-token-secret +spec: + secretStoreRef: + name: vault + kind: ClusterSecretStore + target: + name: cloudflare-api-token-secret + data: + - secretKey: cloudflare-api-token-secret + remoteRef: + key: secrets/cloudflare + property: cloudflare-api-token-secret diff --git a/durpapi/templates/secrets.yaml b/durpapi/templates/secrets.yaml index 8315090..dec5268 100644 --- a/durpapi/templates/secrets.yaml +++ b/durpapi/templates/secrets.yaml @@ -45,20 +45,3 @@ spec: remoteRef: key: secrets/durpapi/postgres property: db_name - -#--- -# -#apiVersion: external-secrets.io/v1beta1 -#kind: SecretStore -#metadata: -# name: vault-durpapi -#spec: -# provider: -# vault: -# server: "http://vault.vault.svc.cluster.local:8200" -# path: "secrets" -# version: "v2" -# auth: -# kubernetes: -# mountPath: "kubernetes" -# role: "external-secrets"