From 9e25f18ca6cba2f200cb51706d93e151e1fdd090 Mon Sep 17 00:00:00 2001
From: Alex Lebens <alexanderlebens@gmail.com>
Date: Fri, 24 Apr 2026 12:17:09 -0500
Subject: [PATCH] feat: add service account

---
 clusters/cl01tl/helm/talos/templates/_helpers.tpl    |  3 +++
 .../cl01tl/helm/talos/templates/service-account.yaml | 12 +++++++++++-
 clusters/cl01tl/helm/talos/values.yaml               |  6 +++---
 3 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/clusters/cl01tl/helm/talos/templates/_helpers.tpl b/clusters/cl01tl/helm/talos/templates/_helpers.tpl
index fd712bb52..e107ee6de 100644
--- a/clusters/cl01tl/helm/talos/templates/_helpers.tpl
+++ b/clusters/cl01tl/helm/talos/templates/_helpers.tpl
@@ -17,5 +17,8 @@ app.kubernetes.io/part-of: {{ .Release.Name }}
 ServiceAccount names
 */}}
 {{- define "custom.serviceAccountName" -}}
+talos-backup
+{{- end -}}
+{{- define "custom.serviceAccountSecretsName" -}}
 talos-backup-secrets
 {{- end -}}
diff --git a/clusters/cl01tl/helm/talos/templates/service-account.yaml b/clusters/cl01tl/helm/talos/templates/service-account.yaml
index 1096b3700..d051e37b6 100644
--- a/clusters/cl01tl/helm/talos/templates/service-account.yaml
+++ b/clusters/cl01tl/helm/talos/templates/service-account.yaml
@@ -1,4 +1,4 @@
-apiVersion: talos.dev/v1alpha1
+apiVersion: v1
 kind: ServiceAccount
 metadata:
   name: {{ include "custom.serviceAccountName" . }}
@@ -6,6 +6,16 @@ metadata:
   labels:
     app.kubernetes.io/name: {{ include "custom.serviceAccountName" . }}
     {{- include "custom.labels" . | nindent 4 }}
+
+---
+apiVersion: talos.dev/v1alpha1
+kind: ServiceAccount
+metadata:
+  name: {{ include "custom.serviceAccountSecretsName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app.kubernetes.io/name: {{ include "custom.serviceAccountSecretsName" . }}
+    {{- include "custom.labels" . | nindent 4 }}
 spec:
   roles:
     - os:etcd:backup
diff --git a/clusters/cl01tl/helm/talos/values.yaml b/clusters/cl01tl/helm/talos/values.yaml
index 9d0c4c32d..3d4aef8b3 100644
--- a/clusters/cl01tl/helm/talos/values.yaml
+++ b/clusters/cl01tl/helm/talos/values.yaml
@@ -16,7 +16,7 @@ etcd-backup:
         backoffLimit: 3
         parallelism: 1
       serviceAccount:
-        name: talos-backup-secrets
+        name: talos-backup
       containers:
         backup:
           image:
@@ -98,7 +98,7 @@ etcd-backup:
         backoffLimit: 3
         parallelism: 1
       serviceAccount:
-        name: talos-backup-secrets
+        name: talos-backup
       containers:
         backup:
           image:
@@ -180,7 +180,7 @@ etcd-backup:
         backoffLimit: 3
         parallelism: 1
       serviceAccount:
-        name: talos-backup-secrets
+        name: talos-backup
       containers:
         backup:
           image:
-- 
2.49.1