48 lines
1.4 KiB
YAML
48 lines
1.4 KiB
YAML
apiVersion: external-secrets.io/v1
|
|
kind: ExternalSecret
|
|
metadata:
|
|
name: foldergram-db-backup-secret-external
|
|
namespace: foldergram
|
|
labels:
|
|
helm.sh/chart: volsync-target-db-1.0.0
|
|
app.kubernetes.io/instance: foldergram
|
|
app.kubernetes.io/part-of: foldergram
|
|
app.kubernetes.io/version: "1.0.0"
|
|
app.kubernetes.io/managed-by: Helm
|
|
app.kubernetes.io/name: foldergram-db-backup-secret-external
|
|
spec:
|
|
secretStoreRef:
|
|
kind: ClusterSecretStore
|
|
name: openbao
|
|
target:
|
|
template:
|
|
mergePolicy: Merge
|
|
engineVersion: v2
|
|
data:
|
|
RESTIC_REPOSITORY: "s3:{{ .ENDPOINT }}/{{ .BUCKET }}/cl01tl/foldergram/foldergram-db"
|
|
data:
|
|
- secretKey: ENDPOINT
|
|
remoteRef:
|
|
key: /digital-ocean/config
|
|
property: ENDPOINT
|
|
- secretKey: BUCKET
|
|
remoteRef:
|
|
key: /digital-ocean/home-infra/volsync-backups
|
|
property: BUCKET
|
|
- secretKey: RESTIC_PASSWORD
|
|
remoteRef:
|
|
key: /digital-ocean/home-infra/volsync-backups
|
|
property: RESTIC_PASSWORD
|
|
- secretKey: AWS_DEFAULT_REGION
|
|
remoteRef:
|
|
key: /digital-ocean/home-infra/volsync-backups
|
|
property: AWS_REGION
|
|
- secretKey: AWS_ACCESS_KEY_ID
|
|
remoteRef:
|
|
key: /digital-ocean/home-infra/volsync-backups
|
|
property: AWS_ACCESS_KEY_ID
|
|
- secretKey: AWS_SECRET_ACCESS_KEY
|
|
remoteRef:
|
|
key: /digital-ocean/home-infra/volsync-backups
|
|
property: AWS_SECRET_ACCESS_KEY
|