From faae184f3d12a3e9467a372ca35d731e97d1db18 Mon Sep 17 00:00:00 2001 From: dvirlabs Date: Thu, 21 May 2026 19:27:37 +0300 Subject: [PATCH] add standard raw-resources-dev-tools and secrets-dev-tools structure --- argocd-apps/raw-resources-dev-tools.yaml | 22 ++++++++++++++++++ argocd-apps/secrets-dev-tools.yaml | 23 +++++++++++++++++++ charts/secrets/Chart.yaml | 6 +++++ charts/secrets/templates/external-secret.yaml | 23 +++++++++++++++++++ manifests/raw-resources-dev-tools/.gitkeep | 0 manifests/secrets-dev-tools/values.yaml | 5 ++++ 6 files changed, 79 insertions(+) create mode 100644 argocd-apps/raw-resources-dev-tools.yaml create mode 100644 argocd-apps/secrets-dev-tools.yaml create mode 100644 charts/secrets/Chart.yaml create mode 100644 charts/secrets/templates/external-secret.yaml create mode 100644 manifests/raw-resources-dev-tools/.gitkeep create mode 100644 manifests/secrets-dev-tools/values.yaml diff --git a/argocd-apps/raw-resources-dev-tools.yaml b/argocd-apps/raw-resources-dev-tools.yaml new file mode 100644 index 0000000..7de2dd7 --- /dev/null +++ b/argocd-apps/raw-resources-dev-tools.yaml @@ -0,0 +1,22 @@ +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: raw-resources-dev-tools + namespace: argocd +spec: + project: dev-tools + source: + repoURL: ssh://git@gitea-ssh.dev-tools.svc.cluster.local:2222/dvirlabs/dev-tools.git + targetRevision: HEAD + path: manifests/raw-resources-dev-tools + directory: + recurse: true + destination: + server: https://kubernetes.default.svc + namespace: dev-tools + syncPolicy: + automated: + prune: true + selfHeal: true + syncOptions: + - CreateNamespace=true diff --git a/argocd-apps/secrets-dev-tools.yaml b/argocd-apps/secrets-dev-tools.yaml new file mode 100644 index 0000000..05fb1d7 --- /dev/null +++ b/argocd-apps/secrets-dev-tools.yaml @@ -0,0 +1,23 @@ +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: secrets-dev-tools + namespace: argocd +spec: + project: dev-tools + source: + repoURL: ssh://git@gitea-ssh.dev-tools.svc.cluster.local:2222/dvirlabs/dev-tools.git + targetRevision: HEAD + path: charts/secrets + helm: + valueFiles: + - ../../manifests/secrets-dev-tools/values.yaml + destination: + server: https://kubernetes.default.svc + namespace: dev-tools + syncPolicy: + automated: + prune: true + selfHeal: true + syncOptions: + - CreateNamespace=true diff --git a/charts/secrets/Chart.yaml b/charts/secrets/Chart.yaml new file mode 100644 index 0000000..402fec2 --- /dev/null +++ b/charts/secrets/Chart.yaml @@ -0,0 +1,6 @@ +apiVersion: v2 +name: secrets +description: Generic ExternalSecret resources chart +type: application +version: 0.1.0 +appVersion: "1.0.0" diff --git a/charts/secrets/templates/external-secret.yaml b/charts/secrets/templates/external-secret.yaml new file mode 100644 index 0000000..8ff0912 --- /dev/null +++ b/charts/secrets/templates/external-secret.yaml @@ -0,0 +1,23 @@ +{{- range .Values.externalSecrets }} +--- +apiVersion: external-secrets.io/v1 +kind: ExternalSecret +metadata: + name: {{ .name }} + namespace: {{ .namespace }} +spec: + refreshInterval: {{ .refreshInterval | default "1h" }} + secretStoreRef: + name: {{ $.Values.secretStore.name }} + kind: {{ $.Values.secretStore.kind }} + target: + name: {{ .targetName }} + creationPolicy: {{ .creationPolicy | default "Owner" }} + data: +{{- range .data }} + - secretKey: {{ .secretKey }} + remoteRef: + key: {{ .remoteKey }} + property: {{ .property }} +{{- end }} +{{- end }} diff --git a/manifests/raw-resources-dev-tools/.gitkeep b/manifests/raw-resources-dev-tools/.gitkeep new file mode 100644 index 0000000..e69de29 diff --git a/manifests/secrets-dev-tools/values.yaml b/manifests/secrets-dev-tools/values.yaml new file mode 100644 index 0000000..b7db6dd --- /dev/null +++ b/manifests/secrets-dev-tools/values.yaml @@ -0,0 +1,5 @@ +secretStore: + name: vault + kind: ClusterSecretStore + +externalSecrets: []