4 changed files with 34 additions and 64 deletions
--- a/applicationsets/cluster-secretstores-appset.yaml
+++ b/applicationsets/cluster-secretstores-appset.yaml
@ -1,31 +1,31 @@
-# apiVersion: argoproj.io/v1alpha1
-# kind: ApplicationSet
-# metadata:
-#   name: cluster-secretstores
-#   namespace: argocd
-# spec:
-#   generators:
-#   - git:
-#       repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
-#       revision: master
-#       files:
-#         - path: cluster-secretstores/*.yaml
-#   template:
-#     metadata:
-#       name: cluster-secretstore-{{path.filename}}  # <-- FIXED
-#     spec:
-#       project: dev-tools
-#       source:
-#         repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
-#         targetRevision: master
-#         path: cluster-secretstores
-#         directory:
-#           recurse: false
-#           include: '{{path.filename}}'
-#       destination:
-#         server: https://kubernetes.default.svc
-#         namespace: dev-tools
-#       syncPolicy:
-#         automated:
-#           prune: true
-#           selfHeal: true
+apiVersion: argoproj.io/v1alpha1
+kind: ApplicationSet
+metadata:
+  name: cluster-secretstores
+  namespace: argocd
+spec:
+  generators:
+    - git:
+        repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
+        revision: master
+        files:
+          - path: cluster-secretstores/*.yaml
+  template:
+    metadata:
+      name: cluster-secretstore-{{path.basename}}
+    spec:
+      project: dev-tools
+      source:
+        repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
+        targetRevision: master
+        path: cluster-secretstores
+        directory:
+          recurse: false
+          include: '{{path.basename}}.yaml'
+      destination:
+        server: https://kubernetes.default.svc
+        namespace: monitoring
+      syncPolicy:
+        automated:
+          prune: true
+          selfHeal: true
--- a/cluster-secretstores/vault-general-secrets.yaml
+++ b/cluster-secretstores/vault-general-secrets.yaml
@ -1,15 +0,0 @@
-apiVersion: external-secrets.io/v1beta1
-kind: ClusterSecretStore
-metadata:
-  name: vault-general-secrets
-spec:
-  provider:
-    vault:
-      server: "http://vault.dev-tools.svc.cluster.local:8200"
-      path: "general-secrets"
-      version: "v2"
-      auth:
-        tokenSecretRef:
-          name: vault-eso-token
-          key: token
-          namespace: dev-tools
--- a/cluster-secretstores/vault-internal-users.yaml
+++ b/cluster-secretstores/vault-internal-users.yaml
@ -1,15 +0,0 @@
-apiVersion: external-secrets.io/v1beta1
-kind: ClusterSecretStore
-metadata:
-  name: vault-internal-users
-spec:
-  provider:
-    vault:
-      server: "http://vault.dev-tools.svc.cluster.local:8200"
-      path: "internal-users"
-      version: "v2"
-      auth:
-        tokenSecretRef:
-          name: vault-eso-token
-          key: token
-          namespace: dev-tools
--- a/cluster-secretstores/vault-oidc-clients.yaml
+++ b/cluster-secretstores/vault-oidc-clients.yaml
@ -6,10 +6,10 @@ spec:
  provider:
    vault:
      server: "http://vault.dev-tools.svc.cluster.local:8200"
-      path: "oidc-clients"
+      path: "oidc-cliets"
      version: "v2"
      auth:
        tokenSecretRef:
-          name: vault-eso-token
-          key: token
+          name: vault-init
+          key: root-token
          namespace: dev-tools