From f5ceac3ec1a89ab88d3e174caff24cecefb6f880 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Wed, 15 Jan 2025 06:00:30 -0600 Subject: [PATCH] add vault --- infra/argocd/templates/vault.yaml | 21 +++++++++++++++++++++ infra/vault/Chart.yaml | 12 ++++++++++++ infra/vault/values.yaml | 25 +++++++++++++++++++++++++ 3 files changed, 58 insertions(+) create mode 100644 infra/argocd/templates/vault.yaml create mode 100644 infra/vault/Chart.yaml create mode 100644 infra/vault/values.yaml diff --git a/infra/argocd/templates/vault.yaml b/infra/argocd/templates/vault.yaml new file mode 100644 index 0000000..3c1ae11 --- /dev/null +++ b/infra/argocd/templates/vault.yaml @@ -0,0 +1,21 @@ +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: vault + namespace: argocd +spec: + project: default + source: + repoURL: https://gitlab.com/developerdurp/homelab.git + targetRevision: main + path: infra/vault + destination: + namespace: vault + name: in-cluster + syncPolicy: + automated: + prune: true + selfHeal: true + syncOptions: + - CreateNamespace=true + diff --git a/infra/vault/Chart.yaml b/infra/vault/Chart.yaml new file mode 100644 index 0000000..e52029e --- /dev/null +++ b/infra/vault/Chart.yaml @@ -0,0 +1,12 @@ +apiVersion: v2 +name: vault +description: A Helm chart for Kubernetes +type: application +version: 0.0.1 +appVersion: 0.0.1 + +dependencies: +- name: vault + repository: https://helm.releases.hashicorp.com + version: 0.29.1 + diff --git a/infra/vault/values.yaml b/infra/vault/values.yaml new file mode 100644 index 0000000..0fceb68 --- /dev/null +++ b/infra/vault/values.yaml @@ -0,0 +1,25 @@ +vault: + server: + image: + repository: "hashicorp/vault" + pullPolicy: Always + + affinity: "" + ha: + enabled: true + replicas: 3 + raft: + enabled: true + setNodeId: true + config: | + cluster_name = "vault-integrated-storage" + storage "raft" { + path = "/vault/data/" + } + + listener "tcp" { + address = "[::]:8200" + cluster_address = "[::]:8201" + tls_disable = "true" + } + service_registration "kubernetes" {}