alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Activity
Files
419b6471ef174f8abba6a1632bc2bdf95c780eab
infrastructure/clusters/cl01tl/helm/garage/templates/external-secret.yaml
Alex Lebens 419b6471ef
All checks were successful
lint-test-helm / lint-helm (push) Successful in 14s
Details
render-manifests-push / render-manifests-push (push) Successful in 25s
Details
renovate / renovate (push) Successful in 1m15s
Details
fix
2025-12-27 15:26:59 -06:00

89 lines
2.4 KiB
YAML
Raw Blame History

apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: garage-token-secret
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: garage-token-secret
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/part-of: {{ .Release.Name }}
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
data:
- secretKey: GARAGE_RPC_SECRET
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: rpc
- secretKey: GARAGE_ADMIN_TOKEN
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: admin
- secretKey: GARAGE_METRICS_TOKEN
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /cl01tl/garage/token
metadataPolicy: None
property: metric
---
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: garage-db-backup-secret-remote
namespace: garage
spec:
data:
- remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-remote
metadataPolicy: None
property: BUCKET_ENDPOINT
secretKey: BUCKET_ENDPOINT
- remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /volsync/restic/garage-remote
metadataPolicy: None
property: RESTIC_PASSWORD
secretKey: RESTIC_PASSWORD
- remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_REGION
secretKey: AWS_DEFAULT_REGION
- remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_KEY_ID
secretKey: AWS_ACCESS_KEY_ID
- remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /garage/home-infra/volsync-backups
metadataPolicy: None
property: ACCESS_SECRET_KEY
secretKey: AWS_SECRET_ACCESS_KEY
secretStoreRef:
kind: ClusterSecretStore
name: vault
target:
template:
data:
RESTIC_REPOSITORY: "{{ `{{ .BUCKET_ENDPOINT }}` }}/garage/garage-db"
engineVersion: v2
mergePolicy: Merge
Reference in New Issue View Git Blame Copy Permalink