From fd8819a38b99fa7c2aa1d5b771082961ffefcff8 Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Thu, 23 Apr 2026 19:45:41 -0500 Subject: [PATCH 1/2] fix: wrong keys --- .../templates/external-secret.yaml | 2 +- .../jellystat/templates/external-secret.yaml | 2 +- .../templates/external-secret.yaml | 2 +- .../helm/vault/templates/external-secret.yaml | 19 +++++++++++++++++++ 4 files changed, 22 insertions(+), 3 deletions(-) diff --git a/clusters/cl01tl/helm/external-dns/templates/external-secret.yaml b/clusters/cl01tl/helm/external-dns/templates/external-secret.yaml index b5916382d..35f5f5e54 100644 --- a/clusters/cl01tl/helm/external-dns/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/external-dns/templates/external-secret.yaml @@ -13,5 +13,5 @@ spec: data: - secretKey: api-key remoteRef: - key: /unifi/auth/cl01tl + key: /unifi/users/cl01tl property: api-key diff --git a/clusters/cl01tl/helm/jellystat/templates/external-secret.yaml b/clusters/cl01tl/helm/jellystat/templates/external-secret.yaml index 276ff1e8d..92cc3ea66 100644 --- a/clusters/cl01tl/helm/jellystat/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/jellystat/templates/external-secret.yaml @@ -21,5 +21,5 @@ spec: property: user - secretKey: password remoteRef: - key: /cl01tl/jellystat/cconfig + key: /cl01tl/jellystat/config property: password diff --git a/clusters/cl01tl/helm/kube-prometheus-stack/templates/external-secret.yaml b/clusters/cl01tl/helm/kube-prometheus-stack/templates/external-secret.yaml index 8530381a4..de30e08a7 100644 --- a/clusters/cl01tl/helm/kube-prometheus-stack/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/kube-prometheus-stack/templates/external-secret.yaml @@ -13,7 +13,7 @@ spec: data: - secretKey: ntfy_password remoteRef: - key: / cl01tl/ntfy/users/cl01tl + key: /cl01tl/ntfy/users/cl01tl property: password --- diff --git a/clusters/cl01tl/helm/vault/templates/external-secret.yaml b/clusters/cl01tl/helm/vault/templates/external-secret.yaml index 7f133691e..edb91b254 100644 --- a/clusters/cl01tl/helm/vault/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/vault/templates/external-secret.yaml @@ -1,5 +1,24 @@ apiVersion: external-secrets.io/v1 kind: ExternalSecret +metadata: + name: vault-token + namespace: {{ .Release.Namespace }} + labels: + app.kubernetes.io/name: vault-token + {{- include "custom.labels" . | nindent 4 }} +spec: + secretStoreRef: + kind: ClusterSecretStore + name: openbao + data: + - secretKey: token + remoteRef: + key: /cl01tl/vault/role/snapshot + property: root + +--- +apiVersion: external-secrets.io/v1 +kind: ExternalSecret metadata: name: vault-snapshot-agent-role namespace: {{ .Release.Namespace }} -- 2.49.1 From 020a3b297d7f64cae5b8c09312ae5b3a7acd0a20 Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Thu, 23 Apr 2026 19:50:59 -0500 Subject: [PATCH 2/2] fix: wrong keys --- clusters/cl01tl/helm/ollama/values.yaml | 2 +- .../cl01tl/helm/paperless-ngx/templates/external-secret.yaml | 2 +- clusters/cl01tl/helm/vault/templates/external-secret.yaml | 4 ++-- clusters/cl01tl/helm/yamtrack/templates/external-secret.yaml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/clusters/cl01tl/helm/ollama/values.yaml b/clusters/cl01tl/helm/ollama/values.yaml index 65d1c0c6d..c66c10786 100644 --- a/clusters/cl01tl/helm/ollama/values.yaml +++ b/clusters/cl01tl/helm/ollama/values.yaml @@ -127,7 +127,7 @@ ollama: - name: WEBUI_SECRET_KEY valueFrom: secretKeyRef: - name: ollama-key + name: open-webui-key key: key - name: DATABASE_URL valueFrom: diff --git a/clusters/cl01tl/helm/paperless-ngx/templates/external-secret.yaml b/clusters/cl01tl/helm/paperless-ngx/templates/external-secret.yaml index ce61d84f8..180b2cbad 100644 --- a/clusters/cl01tl/helm/paperless-ngx/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/paperless-ngx/templates/external-secret.yaml @@ -55,5 +55,5 @@ spec: data: - secretKey: PAPERLESS_SOCIALACCOUNT_PROVIDERS remoteRef: - key: /authentik/oidc/paperless-ngx + key: /cl01tl/authentik/oidc/paperless-ngx property: PAPERLESS_SOCIALACCOUNT_PROVIDERS diff --git a/clusters/cl01tl/helm/vault/templates/external-secret.yaml b/clusters/cl01tl/helm/vault/templates/external-secret.yaml index edb91b254..b086d8f92 100644 --- a/clusters/cl01tl/helm/vault/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/vault/templates/external-secret.yaml @@ -193,11 +193,11 @@ spec: data: - secretKey: NTFY_TOKEN remoteRef: - key: /ntfy/user/cl01tl + key: /cl01tl/ntfy/users/cl01tl property: token - secretKey: NTFY_ENDPOINT remoteRef: - key: /ntfy/user/cl01tl + key: /cl01tl/ntfy/users/cl01tl property: endpoint - secretKey: NTFY_TOPIC remoteRef: diff --git a/clusters/cl01tl/helm/yamtrack/templates/external-secret.yaml b/clusters/cl01tl/helm/yamtrack/templates/external-secret.yaml index 6dff59587..2aff52563 100644 --- a/clusters/cl01tl/helm/yamtrack/templates/external-secret.yaml +++ b/clusters/cl01tl/helm/yamtrack/templates/external-secret.yaml @@ -14,7 +14,7 @@ spec: - secretKey: SECRET remoteRef: key: /cl01tl/yamtrack/config - property: SECRET + property: secret --- apiVersion: external-secrets.io/v1 -- 2.49.1