diff --git a/infra/vault/templates/secret-store.yaml b/infra/vault/templates/secret-store.yaml
index 9c46d30..545ed6c 100644
--- a/infra/vault/templates/secret-store.yaml
+++ b/infra/vault/templates/secret-store.yaml
@@ -17,23 +17,19 @@ spec:
 
 --- 
 
-apiVersion: external-secrets.io/v1alpha1
-kind: SecretStore
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
 metadata:
-  name: vault-backend
-  namespace: example
+  name: cloudflare-api-token-secret
 spec:
-  provider:
-    vault:
-      server: "https://vault.vault.svc.cluster.local:8200"
-      path: "secret"
-      version: "v2"
-      auth:
-        kubernetes:
-          mountPath: "kubernetes"
-          role: "demo"
-          serviceAccountRef:
-            name: "my-sa"
-          secretRef:
-            name: "my-secret"
-            key: "vault"
+  secretStoreRef:
+    name: vault
+    kind: ClusterSecretStore
+  target:
+    name: cloudflare-api-token-secret
+  data:
+  - secretKey: cloudflare-api-token-secret
+    remoteRef:
+      key: secrets/cert-manager
+      property: cloudflare-api-token-secret
+