56 lines
1.6 KiB
YAML
56 lines
1.6 KiB
YAML
apiVersion: external-secrets.io/v1
|
|
kind: ExternalSecret
|
|
metadata:
|
|
name: booklore-config-backup-secret-local
|
|
namespace: grimmory
|
|
labels:
|
|
app.kubernetes.io/name: booklore-config-backup-secret-local
|
|
app.kubernetes.io/instance: grimmory
|
|
app.kubernetes.io/part-of: grimmory
|
|
spec:
|
|
secretStoreRef:
|
|
kind: ClusterSecretStore
|
|
name: vault
|
|
target:
|
|
template:
|
|
engineVersion: v2
|
|
mergePolicy: Merge
|
|
data:
|
|
RESTIC_REPOSITORY: '/booklore/booklore-config'
|
|
data:
|
|
- remoteRef:
|
|
conversionStrategy: Default
|
|
decodingStrategy: None
|
|
key: /volsync/restic/garage-local
|
|
metadataPolicy: None
|
|
property: BUCKET_ENDPOINT
|
|
secretKey: BUCKET_ENDPOINT
|
|
- remoteRef:
|
|
conversionStrategy: Default
|
|
decodingStrategy: None
|
|
key: /volsync/restic/garage-local
|
|
metadataPolicy: None
|
|
property: RESTIC_PASSWORD
|
|
secretKey: RESTIC_PASSWORD
|
|
- remoteRef:
|
|
conversionStrategy: Default
|
|
decodingStrategy: None
|
|
key: /garage/home-infra/volsync-backups
|
|
metadataPolicy: None
|
|
property: ACCESS_REGION
|
|
secretKey: AWS_DEFAULT_REGION
|
|
- remoteRef:
|
|
conversionStrategy: Default
|
|
decodingStrategy: None
|
|
key: /garage/home-infra/volsync-backups
|
|
metadataPolicy: None
|
|
property: ACCESS_KEY_ID
|
|
secretKey: AWS_ACCESS_KEY_ID
|
|
- remoteRef:
|
|
conversionStrategy: Default
|
|
decodingStrategy: None
|
|
key: /garage/home-infra/volsync-backups
|
|
metadataPolicy: None
|
|
property: ACCESS_SECRET_KEY
|
|
secretKey: AWS_SECRET_ACCESS_KEY
|