diff --git a/clusters/cl01tl/manifests/dawarich/Deployment-dawarich.yaml b/clusters/cl01tl/manifests/dawarich/Deployment-dawarich.yaml index 4e3602726..441653de1 100644 --- a/clusters/cl01tl/manifests/dawarich/Deployment-dawarich.yaml +++ b/clusters/cl01tl/manifests/dawarich/Deployment-dawarich.yaml @@ -108,6 +108,21 @@ spec: secretKeyRef: key: key name: dawarich-key + - name: OTP_ENCRYPTION_PRIMARY_KEY + valueFrom: + secretKeyRef: + key: otp-primary-key + name: dawarich-key + - name: OTP_ENCRYPTION_DETERMINISTIC_KEY + valueFrom: + secretKeyRef: + key: otp-deterministic-key + name: dawarich-key + - name: OTP_ENCRYPTION_KEY_DERIVATION_SALT + valueFrom: + secretKeyRef: + key: otp-derivation-salt + name: dawarich-key - name: RAILS_LOG_TO_STDOUT value: "true" - name: SELF_HOSTED @@ -209,6 +224,21 @@ spec: secretKeyRef: key: key name: dawarich-key + - name: OTP_ENCRYPTION_PRIMARY_KEY + valueFrom: + secretKeyRef: + key: otp-primary-key + name: dawarich-key + - name: OTP_ENCRYPTION_DETERMINISTIC_KEY + valueFrom: + secretKeyRef: + key: otp-deterministic-key + name: dawarich-key + - name: OTP_ENCRYPTION_KEY_DERIVATION_SALT + valueFrom: + secretKeyRef: + key: otp-derivation-salt + name: dawarich-key - name: RAILS_LOG_TO_STDOUT value: "true" - name: SELF_HOSTED diff --git a/clusters/cl01tl/manifests/dawarich/ExternalSecret-dawarich-key.yaml b/clusters/cl01tl/manifests/dawarich/ExternalSecret-dawarich-key.yaml index ecc425159..c9fa4a4dd 100644 --- a/clusters/cl01tl/manifests/dawarich/ExternalSecret-dawarich-key.yaml +++ b/clusters/cl01tl/manifests/dawarich/ExternalSecret-dawarich-key.yaml @@ -16,3 +16,15 @@ spec: remoteRef: key: /cl01tl/dawarich/key property: key + - secretKey: otp-primary-key + remoteRef: + key: /cl01tl/dawarich/key + property: otp-primary-key + - secretKey: otp-deterministic-key + remoteRef: + key: /cl01tl/dawarich/key + property: otp-deterministic-key + - secretKey: otp-derivation-salt + remoteRef: + key: /cl01tl/dawarich/key + property: otp-derivation-salt