From 23da616975f01f3f9fdc443de0accb620728b0e7 Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Fri, 24 Apr 2026 21:12:28 -0500 Subject: [PATCH] feat: add to secret --- .../helm/talos/templates/external-secret.yaml | 24 +++++++++++++++ clusters/cl01tl/helm/talos/values.yaml | 30 +++++++++++++++---- 2 files changed, 48 insertions(+), 6 deletions(-) diff --git a/clusters/cl01tl/helm/talos/templates/external-secret.yaml b/clusters/cl01tl/helm/talos/templates/external-secret.yaml index f319406c2..5badcb8ae 100644 --- a/clusters/cl01tl/helm/talos/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/talos/templates/external-secret.yaml @@ -19,6 +19,14 @@ spec: remoteRef: key: /garage/home-infra/talos-backups property: ACCESS_SECRET_KEY + - secretKey: AWS_REGION + remoteRef: + key: /garage/home-infra/talos-backups + property: ACCESS_REGION + - secretKey: BUCKET_NAME + remoteRef: + key: /garage/home-infra/talos-backups + property: BUCKET - secretKey: BUCKET remoteRef: key: /garage/home-infra/talos-backups @@ -50,6 +58,14 @@ spec: remoteRef: key: /garage/home-infra/talos-backups property: ACCESS_SECRET_KEY + - secretKey: AWS_REGION + remoteRef: + key: /garage/home-infra/talos-backups + property: ACCESS_REGION + - secretKey: BUCKET_NAME + remoteRef: + key: /garage/home-infra/talos-backups + property: BUCKET - secretKey: BUCKET remoteRef: key: /garage/home-infra/talos-backups @@ -81,6 +97,14 @@ spec: remoteRef: key: /digital-ocean/home-infra/talos-backups property: AWS_SECRET_ACCESS_KEY + - secretKey: AWS_REGION + remoteRef: + key: /digital-ocean/home-infra/talos-backups + property: AWS_REGION + - secretKey: BUCKET_NAME + remoteRef: + key: /digital-ocean/home-infra/talos-backups + property: BUCKET - secretKey: BUCKET remoteRef: key: /digital-ocean/home-infra/talos-backups diff --git a/clusters/cl01tl/helm/talos/values.yaml b/clusters/cl01tl/helm/talos/values.yaml index 3d4aef8b3..477c10926 100644 --- a/clusters/cl01tl/helm/talos/values.yaml +++ b/clusters/cl01tl/helm/talos/values.yaml @@ -47,11 +47,17 @@ etcd-backup: name: talos-etcd-backup-local-config key: AWS_SECRET_ACCESS_KEY - name: AWS_REGION - value: us-east-1 + valueFrom: + secretKeyRef: + name: talos-etcd-backup-local-config + key: AWS_REGION - name: CUSTOM_S3_ENDPOINT value: http://garage-main.garage:3900 - name: BUCKET - value: talos-backups + valueFrom: + secretKeyRef: + name: talos-etcd-backup-local-config + key: BUCKET_NAME - name: S3_PREFIX value: "cl01tl/etcd" - name: CLUSTER_NAME @@ -129,11 +135,17 @@ etcd-backup: name: talos-etcd-backup-remote-config key: AWS_SECRET_ACCESS_KEY - name: AWS_REGION - value: us-east-1 + valueFrom: + secretKeyRef: + name: talos-etcd-backup-remote-config + key: AWS_REGION - name: CUSTOM_S3_ENDPOINT value: https://garage-ps10rp.boreal-beaufort.ts.net:3900 - name: BUCKET - value: talos-backups + valueFrom: + secretKeyRef: + name: talos-etcd-backup-remote-config + key: BUCKET_NAME - name: S3_PREFIX value: "cl01tl/etcd" - name: CLUSTER_NAME @@ -211,11 +223,17 @@ etcd-backup: name: talos-etcd-backup-external-config key: AWS_SECRET_ACCESS_KEY - name: AWS_REGION - value: nyc3 + valueFrom: + secretKeyRef: + name: talos-etcd-backup-external-config + key: AWS_REGION - name: CUSTOM_S3_ENDPOINT value: https://nyc3.digitaloceanspaces.com - name: BUCKET - value: talos-backups-bee8585f7b8a4d0239c9b823 + valueFrom: + secretKeyRef: + name: talos-etcd-backup-external-config + key: BUCKET_NAME - name: S3_PREFIX value: "cl01tl/etcd" - name: CLUSTER_NAME