From f9789374550a6a1201dc895f263a056919941f09 Mon Sep 17 00:00:00 2001
From: DeveloperDurp <DeveloperDurp@durp.info>
Date: Mon, 27 Jan 2025 05:26:32 -0600
Subject: [PATCH] update

---
 infra/cert-manager/templates/secretvault.yaml |  1 -
 infra/vault/templates/secret-store.yaml       | 23 +++++++++++++++++++
 2 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/infra/cert-manager/templates/secretvault.yaml b/infra/cert-manager/templates/secretvault.yaml
index a9f9b02..37a2e92 100644
--- a/infra/cert-manager/templates/secretvault.yaml
+++ b/infra/cert-manager/templates/secretvault.yaml
@@ -6,7 +6,6 @@ spec:
   secretStoreRef:
     name: vault
     kind: ClusterSecretStore
-    namespace: vault
   target:
     name: cloudflare-api-token-secret
   data:
diff --git a/infra/vault/templates/secret-store.yaml b/infra/vault/templates/secret-store.yaml
index a35d7cb..9c46d30 100644
--- a/infra/vault/templates/secret-store.yaml
+++ b/infra/vault/templates/secret-store.yaml
@@ -14,3 +14,26 @@ spec:
           role: "VaultSecretStore"
           serviceAccountRef:
             name: "vault"
+
+--- 
+
+apiVersion: external-secrets.io/v1alpha1
+kind: SecretStore
+metadata:
+  name: vault-backend
+  namespace: example
+spec:
+  provider:
+    vault:
+      server: "https://vault.vault.svc.cluster.local:8200"
+      path: "secret"
+      version: "v2"
+      auth:
+        kubernetes:
+          mountPath: "kubernetes"
+          role: "demo"
+          serviceAccountRef:
+            name: "my-sa"
+          secretRef:
+            name: "my-secret"
+            key: "vault"