From 82a246b0ec33acfc36448be0156c75b70157c23c Mon Sep 17 00:00:00 2001
From: William P <me@williamtpeebles.com>
Date: Wed, 22 Oct 2025 22:14:56 -0400
Subject: [PATCH] postgres: add netmaker

---
 postgres/config/databases/netmaker.yaml |  9 +++++++++
 postgres/config/netmaker_auth.yaml      | 25 +++++++++++++++++++++++++
 2 files changed, 34 insertions(+)
 create mode 100644 postgres/config/databases/netmaker.yaml
 create mode 100644 postgres/config/netmaker_auth.yaml

diff --git a/postgres/config/databases/netmaker.yaml b/postgres/config/databases/netmaker.yaml
new file mode 100644
index 0000000..48f0f4b
--- /dev/null
+++ b/postgres/config/databases/netmaker.yaml
@@ -0,0 +1,9 @@
+apiVersion: postgresql.cnpg.io/v1
+kind: Database
+metadata:
+  name: netmaker
+spec:
+  name: netmaker
+  owner: netmaker
+  cluster:
+    name: weyma-pgsql
\ No newline at end of file
diff --git a/postgres/config/netmaker_auth.yaml b/postgres/config/netmaker_auth.yaml
new file mode 100644
index 0000000..50bb968
--- /dev/null
+++ b/postgres/config/netmaker_auth.yaml
@@ -0,0 +1,25 @@
+apiVersion: external-secrets.io/v1
+kind: ExternalSecret
+metadata:
+  name: netmaker-auth
+spec:
+  data:
+  - remoteRef:
+      conversionStrategy: Default
+      decodingStrategy: None
+      key: cloudnativepg
+      metadataPolicy: None
+      property: netmaker_pw
+    secretKey: password
+  refreshInterval: 1h
+  secretStoreRef:
+    kind: ClusterSecretStore
+    name: weyma-vault
+  target:
+    template:
+      data:
+        username: netmaker
+        password: "{{ .password }}"
+    creationPolicy: Owner
+    deletionPolicy: Retain
+    name: netmaker-auth