alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Activity
Files
093c54bb74ba02437fb5597ad8181267d56fd80e
infrastructure/clusters/cl01tl/helm/garage/templates/external-secret.yaml
Alex Lebens 093c54bb74
All checks were successful
lint-test-helm / lint-helm (push) Successful in 25s
Details
render-manifests-push / render-manifests-push (push) Successful in 2m2s
Details
renovate / renovate (push) Successful in 54s
Details
add db
2025-12-27 15:42:55 -06:00

89 lines
2.5 KiB
YAML
Raw Blame History

apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: garage-token-secret
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: garage-token-secret
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/part-of: {{ .Release.Name }}
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
data:
- secretKey: GARAGE_RPC_SECRET
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: rpc
- secretKey: GARAGE_ADMIN_TOKEN
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: admin
- secretKey: GARAGE_METRICS_TOKEN
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: metric
# ---
# apiVersion: external-secrets.io/v1
# kind: ExternalSecret
# metadata:
# name: garage-db-backup-secret-remote
# namespace: garage
# spec:
# data:
# - remoteRef:
# conversionStrategy: Default
# decodingStrategy: None
# key: /volsync/restic/garage-remote
# metadataPolicy: None
# property: BUCKET_ENDPOINT
# secretKey: BUCKET_ENDPOINT
# - remoteRef:
# conversionStrategy: Default
# decodingStrategy: None
# key: /volsync/restic/garage-remote
# metadataPolicy: None
# property: RESTIC_PASSWORD
# secretKey: RESTIC_PASSWORD
# - remoteRef:
# conversionStrategy: Default
# decodingStrategy: None
# key: /garage/home-infra/volsync-backups
# metadataPolicy: None
# property: ACCESS_REGION
# secretKey: AWS_DEFAULT_REGION
# - remoteRef:
# conversionStrategy: Default
# decodingStrategy: None
# key: /garage/home-infra/volsync-backups
# metadataPolicy: None
# property: ACCESS_KEY_ID
# secretKey: AWS_ACCESS_KEY_ID
# - remoteRef:
# conversionStrategy: Default
# decodingStrategy: None
# key: /garage/home-infra/volsync-backups
# metadataPolicy: None
# property: ACCESS_SECRET_KEY
# secretKey: AWS_SECRET_ACCESS_KEY
# secretStoreRef:
# kind: ClusterSecretStore
# name: vault
# target:
# template:
# data:
# RESTIC_REPOSITORY: "{{ `{{ .BUCKET_ENDPOINT }}` }}/garage/garage-db"
# engineVersion: v2
# mergePolicy: Merge
Reference in New Issue View Git Blame Copy Permalink