From f6ab77153a05e8f976b08cb7f7697b761175ea82 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Tue, 25 Jul 2023 08:55:28 -0500 Subject: [PATCH] update --- durpapi/templates/secrets.yaml | 38 +++++++++++++++---------------- vault/templates/secret-store.yaml | 14 ++++++++++++ 2 files changed, 33 insertions(+), 19 deletions(-) create mode 100644 vault/templates/secret-store.yaml diff --git a/durpapi/templates/secrets.yaml b/durpapi/templates/secrets.yaml index 4f567c3..8315090 100644 --- a/durpapi/templates/secrets.yaml +++ b/durpapi/templates/secrets.yaml @@ -1,11 +1,11 @@ apiVersion: external-secrets.io/v1beta1 kind: ExternalSecret metadata: - name: vault-durpapi + name: durpapi-secret spec: secretStoreRef: - name: vault-durpapi - kind: SecretStore + name: vault + kind: ClusterSecretStore target: name: durpapi-secret data: @@ -46,19 +46,19 @@ spec: key: secrets/durpapi/postgres property: db_name ---- - -apiVersion: external-secrets.io/v1beta1 -kind: SecretStore -metadata: - name: vault-durpapi -spec: - provider: - vault: - server: "http://vault.vault.svc.cluster.local:8200" - path: "secrets" - version: "v2" - auth: - kubernetes: - mountPath: "kubernetes" - role: "external-secrets" \ No newline at end of file +#--- +# +#apiVersion: external-secrets.io/v1beta1 +#kind: SecretStore +#metadata: +# name: vault-durpapi +#spec: +# provider: +# vault: +# server: "http://vault.vault.svc.cluster.local:8200" +# path: "secrets" +# version: "v2" +# auth: +# kubernetes: +# mountPath: "kubernetes" +# role: "external-secrets" diff --git a/vault/templates/secret-store.yaml b/vault/templates/secret-store.yaml new file mode 100644 index 0000000..e7cca3a --- /dev/null +++ b/vault/templates/secret-store.yaml @@ -0,0 +1,14 @@ +apiVersion: external-secrets.io/v1beta1 +kind: ClusterSecretStore +metadata: + name: vault +spec: + provider: + vault: + server: "http://vault.vault.svc.cluster.local:8200" + path: "secrets" + version: "v2" + auth: + kubernetes: + mountPath: "kubernetes" + role: "external-secrets"