Skip to content

Commit

Permalink
Merge pull request #78 from TJM/build/release-1-9-0
Browse files Browse the repository at this point in the history 
build: release v1.9.0 - Vault v1.13.0
  • Loading branch information
Tommy McNeely authored Mar 15, 2023
2 parents 25cf31b + 80fffe3 commit 279fdda
Show file tree
Hide file tree
Showing 5 changed files with 27 additions and 2 deletions.
4 changes: 2 additions & 2 deletions charts/vault-gcp-secrets/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,5 +5,5 @@ home: https://github.com/TJM/vault-gcp-secrets
# icon: https://raw.githubusercontent.com/TJM/vault-gcp-secrets/master/assets/logo.png
maintainers:
- name: TJM
version: 1.8.2
appVersion: "v1.12.2"
version: 1.9.0
appVersion: "v1.13.0"
1 change: 1 addition & 0 deletions charts/vault-gcp-secrets/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@ NOTE: We are using this code in the production environment. You may use it at yo
| `vault.kubernetesRole` | The name of the role which is configured for the Kubernetes auth method. | `vault-gcp-secrets` |
| `vault.gcpSecretPath` | The vault secret path to read. | `gcp/my-role` |
| `secret.name` | Kubernetes secret to create. | `gcp-secret` |
| `secret.additionalSecrets` | List of Kubernetes secrets to manage. | `[]`
| `secret.key` | Kubernetes secret key (filename). | `key.json` |
| `secret.type` | Kubernetes secret type (needs to match the kind of secret that will be updated). | `kubernetes.io/dockerconfigjson` |
| `secret.template` | Vault Template to decode the secret. | `base64Decode .Data.private_key_data` |
Expand Down
13 changes: 13 additions & 0 deletions charts/vault-gcp-secrets/templates/additional-secrets.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
{{ $labels := include "vault-gcp-secrets.labels" . | indent 4 }}
{{ range .Values.additionalSecrets }}
apiVersion: v1
data:
.dockerconfigjson: eyJhdXRocyI6eyJQTEFDRUhPTERFUiI6eyJ1c2VybmFtZSI6IlBMQUNFSE9MREVSIiwicGFzc3dvcmQiOiJQTEFDRUhPTERFUiIsImF1dGgiOiJVRXhCUTBWSVQweEVSVkk2VUV4QlEwVklUMHhFUlZJPSJ9fX0=
kind: Secret
metadata:
name: {{ .name | quote }}
namespace: {{ $.Release.Namespace }}
labels:
{{ $labels }}
type: {{ default $.Values.secret.type .type | quote }}
{{ end }}
3 changes: 3 additions & 0 deletions charts/vault-gcp-secrets/templates/role.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,9 @@ rules:
- secrets
resourceNames:
- {{ .Values.secret.name | quote}}
{{- range .Values.additionalSecrets }}
- {{ .name | quote }}
{{- end }}
verbs:
- create
- delete
Expand Down
8 changes: 8 additions & 0 deletions charts/vault-gcp-secrets/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -65,6 +65,14 @@ secret:
dockerUsername: _json_key
dockerEmail: [email protected]

# additionalSecrets - more secrets to manage with this chart (you will have to adjust the template command to manage these)
# - name is required, type will default to the secret.type
# additionalSecrets:
# - name: oneSecret
# - name: twoSecret
# type: Opaque
additionalSecrets: []

debugVerboseTemplateCommand: false
debugBypassTemplateCommandFail: false

Expand Down

0 comments on commit 279fdda

Please sign in to comment.