From cffe95f7e2362c287fefac957f6f6e764c86e847 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Sat, 13 May 2023 11:41:03 +0000 Subject: [PATCH] Update 5 files - /durpapi/templates/sealedsecret.yaml - /durpot/templates/sealedsecret.yaml - /durpapi/templates/secrets.yaml - /durpot/templates/secrets.yaml - /authentik/templates/authentik-sealed.yaml --- authentik/templates/authentik-sealed.yaml | 69 +++++++++++++++---- .../{sealedsecret.yaml => secrets.yaml} | 0 .../{sealedsecret.yaml => secrets.yaml} | 0 3 files changed, 54 insertions(+), 15 deletions(-) rename durpapi/templates/{sealedsecret.yaml => secrets.yaml} (100%) rename durpot/templates/{sealedsecret.yaml => secrets.yaml} (100%) diff --git a/authentik/templates/authentik-sealed.yaml b/authentik/templates/authentik-sealed.yaml index 304ad7f..a49ddb2 100644 --- a/authentik/templates/authentik-sealed.yaml +++ b/authentik/templates/authentik-sealed.yaml @@ -1,16 +1,55 @@ -apiVersion: bitnami.com/v1alpha1 -kind: SealedSecret -metadata: - creationTimestamp: null - name: db-pass - namespace: authentik -spec: - encryptedData: - dbpass: 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 - secretkey: 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 - template: - metadata: - creationTimestamp: null - name: db-pass - namespace: authentik +#apiVersion: bitnami.com/v1alpha1 +#kind: SealedSecret +#metadata: +# creationTimestamp: null +# name: db-pass +# namespace: authentik +#spec: +# encryptedData: +# dbpass: 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 +# secretkey: AgB4s+1FZWNm+L69SXf9NG2pEXtKfyVGY6cRMcLezrjRBppeR4HLGO/fG47XwThUIh19fser39GTueWTmNb6p6XRewAC9StUOdugAM2UBoH/6JXyMJe1Yxjgpos2g7H9nShsVgd4q5CRF7SSrFxmecarmY7aHDR5vHvqhSxX071QVVZMM1ZWXdrNXuluJiBkYw1o/mIX3ZI2ca2WJvSITw7XP+5pbvBKmatonzxVb4l3IPtKQGJnEs5OGMuLb7G46DEw3HvNBvn3fkiSKmm2e/JCof6edafGaqATH2RdbHOs7xYkRYNJMZSlySQ2V+pCP2vT5Hn3tSz4t2iTcdJ0LPhMe5p/lPDswf8MsK14PkKR9xIORMBNvEgNFzOxajHV3Kku9Qi7vpCYsgk8238LFn8SYntqa7s1UqlMBR8P4X+x3efvuSMnGNyj/7qrIl7nBBvPuhAlelNWlriQi/UT/ED35ti/cNk6lNp2WJZa7d9LLMggh61Ju/XRDxBNR0RfBh6o3ckZjgseWRYQQccjWQ9mDjJv30A+HpZrsFDvojasun3o+M2F95cR6e6s0t0PSf02Y87E3/97he/M/JykNj1CWNY9PK4SZLmOG6zd1WW2Vu08pleZb8nsptvjJY9eaQ+TNQZOibYuR7of2xH1n9qCGcYG2iyERf7jwCRLjNQ4QbMenBuZAfXu/xMYOguwjPY8X/JeFDta/Fyq5EnCymO7ZXywSLjwhp6hwkOkWhb+7RwM70kqTJjGK4FDb7TgYLI= +# template: +# metadata: +# creationTimestamp: null +# name: db-pass +# namespace: authentik +# +--- +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: vault-authentik +spec: + secretStoreRef: + name: vault-authentik + kind: SecretStore + target: + name: db-pass + data: + - secretKey: dbpass + remoteRef: + key: authentik/database + property: dbpass + - secretKey: secretkey + remoteRef: + key: authentik/database + property: secretkey + + +--- + +apiVersion: external-secrets.io/v1beta1 +kind: SecretStore +metadata: + name: vault-authentik +spec: + provider: + vault: + server: "http://vault.vault.svc.cluster.local:8200" + path: "authentik" + version: "v2" + auth: + kubernetes: + mountPath: "kubernetes" + role: "external-secrets" \ No newline at end of file diff --git a/durpapi/templates/sealedsecret.yaml b/durpapi/templates/secrets.yaml similarity index 100% rename from durpapi/templates/sealedsecret.yaml rename to durpapi/templates/secrets.yaml diff --git a/durpot/templates/sealedsecret.yaml b/durpot/templates/secrets.yaml similarity index 100% rename from durpot/templates/sealedsecret.yaml rename to durpot/templates/secrets.yaml