dvirlabs/dev-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix resources

Browse Source
This commit is contained in:
dvirlabs 2025-10-01 12:34:57 +03:00
parent 1e9dbc2922
commit 2a78e851ba
6 changed files with 14 additions and 73 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
manifests/cluster-secret-store/internal-users/bootstrap-job.yaml
View File

@ -74,23 +74,3 @@ spec:
bound_audiences="https://kubernetes.default.svc" \
policies="eso-internal-users-read" \
ttl=1h
---
apiVersion: external-secrets.io/v1beta1
kind: ClusterSecretStore
metadata:
name: vault-internal-users
annotations:
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
server: "http://vault.dev-tools.svc.cluster.local:8200"
path: "internal-users"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "eso-internal-users"
serviceAccountRef:
name: "external-secrets"
namespace: "dev-tools"

8
manifests/cluster-secret-store/internal-users/clustersecretstore.yaml
View File

@ -3,7 +3,7 @@ kind: ClusterSecretStore
metadata:
name: vault-internal-users
annotations:
argocd.argoproj.io/sync-wave: "2"
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
@ -12,8 +12,8 @@ spec:
version: "v2"
auth:
kubernetes:
mountPath: "auth/kubernetes"
mountPath: "kubernetes"
role: "eso-internal-users"
serviceAccountRef:
name: external-secrets
namespace: dev-tools
name: "external-secrets"
namespace: "dev-tools"

20
manifests/cluster-secret-store/oidc/bootstrap-job.yaml
View File

@ -74,23 +74,3 @@ spec:
bound_audiences="https://kubernetes.default.svc" \
policies="eso-oidc-read" \
ttl=1h
---
apiVersion: external-secrets.io/v1beta1
kind: ClusterSecretStore
metadata:
name: vault-oidc-secrets
annotations:
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
server: "http://vault.dev-tools.svc.cluster.local:8200"
path: "oidc-secrets"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "eso-oidc"
serviceAccountRef:
name: "external-secrets"
namespace: "dev-tools"

8
manifests/cluster-secret-store/oidc/clustersecretstore.yaml
View File

@ -3,7 +3,7 @@ kind: ClusterSecretStore
metadata:
name: vault-oidc-secrets
annotations:
argocd.argoproj.io/sync-wave: "2"
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
@ -12,8 +12,8 @@ spec:
version: "v2"
auth:
kubernetes:
mountPath: "auth/kubernetes"
mountPath: "kubernetes"
role: "eso-oidc"
serviceAccountRef:
name: external-secrets
namespace: dev-tools
name: "external-secrets"
namespace: "dev-tools"

21
manifests/cluster-secret-store/vault-general-secrets/bootstrap-job.yaml
View File

@ -74,23 +74,4 @@ spec:
bound_audiences="https://kubernetes.default.svc" \
policies="eso-general-read" \
ttl=1h
---
apiVersion: external-secrets.io/v1beta1
kind: ClusterSecretStore
metadata:
name: vault-general-secrets
annotations:
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
server: "http://vault.dev-tools.svc.cluster.local:8200"
path: "general-secrets"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "eso-general"
serviceAccountRef:
name: "external-secrets"
namespace: "dev-tools"

8
manifests/cluster-secret-store/vault-general-secrets/clustersecretstore.yaml
View File

@ -3,7 +3,7 @@ kind: ClusterSecretStore
metadata:
name: vault-general-secrets
annotations:
argocd.argoproj.io/sync-wave: "2"
argocd.argoproj.io/sync-wave: "0"
spec:
provider:
vault:
@ -12,8 +12,8 @@ spec:
version: "v2"
auth:
kubernetes:
mountPath: "auth/kubernetes"
mountPath: "kubernetes"
role: "eso-general"
serviceAccountRef:
name: external-secrets
namespace: dev-tools
name: "external-secrets"
namespace: "dev-tools"