update

2024-08-07 05:48:59 -05:00 · 2024-08-07 05:48:43 -05:00 · 2024-08-07 05:47:57 -05:00 · 2024-08-07 05:46:58 -05:00 · 2024-08-07 05:35:50 -05:00 · 2024-08-07 05:35:03 -05:00
4 changed files with 45 additions and 27 deletions
--- a/argocd/templates/vault.yaml
+++ b/argocd/templates/vault.yaml
@@ -0,0 +1,25 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: vault
+  namespace: argocd
+spec:
+  project: default
+  source:
+    repoURL: https://gitlab.com/developerdurp/homelab.git
+    targetRevision: dmz
+    path: vault
+  destination:
+    namespace: vault
+    name: in-cluster
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true  
+    syncOptions:
+      - CreateNamespace=true 
+  ignoreDifferences:
+  - group: admissionregistration.k8s.io
+    kind: MutatingWebhookConfiguration
+    jqPathExpressions:
+    - .webhooks[]?.clientConfig.caBundle
--- a/external-secrets/templates/secret-store.yaml
+++ b/external-secrets/templates/secret-store.yaml
@@ -9,10 +9,9 @@ spec:
      path: "secrets"
      version: "v2"
      auth:
-        tokenSecretRef:
-          name: vault-token
-          key: token
-          namespace: external-secrets
+        kubernetes:
+          mountPath: "kubernetes"
+          role: "dmz-external-secrets"

 ---

--- a/vault/templates/secret-store.yaml
+++ b/vault/templates/secret-store.yaml
@@ -11,20 +11,20 @@
 #      auth:
 #        kubernetes:
 #          mountPath: "kubernetes"
-#          role: "external-secrets"
---
-apiVersion: external-secrets.io/v1beta1
-kind: ClusterSecretStore
-metadata:
-  name: vault
-spec:
-  provider:
-    vault:
-      server: "https://vault.internal.prd.durp.info"
-      path: "secrets"
-      version: "v2"
-      auth:
-        tokenSecretRef:
-          name: vault-token
-          key: token
-          namespace: external-secrets
+#          role: "dmz-external-secrets"
+#---
+#apiVersion: external-secrets.io/v1beta1
+#kind: ClusterSecretStore
+#metadata:
+#  name: vault
+#spec:
+#  provider:
+#    vault:
+#      server: "https://vault.internal.prd.durp.info"
+#      path: "secrets"
+#      version: "v2"
+#      auth:
+#        tokenSecretRef:
+#          name: vault-token
+#          key: token
+#          namespace: external-secrets
--- a/vault/values.yaml
+++ b/vault/values.yaml
@@ -32,9 +32,3 @@ vault:
      repository: "registry.internal.durp.info/hashicorp/vault"
      tag: "1.15.2"

-  server:
-    enabled: false
-
-  ui:
-    enabled: false
-
Author	SHA1	Message	Date
DeveloperDurp	c5e1681c5e	update	2024-08-07 05:48:59 -05:00
DeveloperDurp	3caef94aa2	update	2024-08-07 05:48:43 -05:00
DeveloperDurp	d1b5b53626	update	2024-08-07 05:47:57 -05:00
DeveloperDurp	1fb05b911d	update	2024-08-07 05:46:58 -05:00
DeveloperDurp	35e46caf8e	update	2024-08-07 05:35:50 -05:00
DeveloperDurp	1488f5c3bd	update	2024-08-07 05:35:03 -05:00
DeveloperDurp	6d743b8812	update	2024-08-07 05:34:15 -05:00
DeveloperDurp	23a5ebef45	update	2024-08-07 05:33:45 -05:00
DeveloperDurp	c904e0260a	update	2024-08-07 05:33:23 -05:00
DeveloperDurp	b4adf6bfe1	update	2024-08-07 05:28:09 -05:00