infrastructure/weyma-talos
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

cert-manager: add vault approle

Browse Source
This commit is contained in:
William P
2025-05-08 15:27:00 -04:00
parent 2d95cef120
commit a7585f43c8
1 changed files with 22 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
system-apps/cert-manager/config/ExternalSecrets/vault-approle.yaml Normal file
View File

@@ -0,0 +1,22 @@
apiVersion: external-secrets.io/v1beta1
kind: ExternalSecret
metadata:
name: vault-approle-secret
namespace: cert-manager
spec:
refreshInterval: 1h
secretStoreRef:
name: weyma-vault
kind: ClusterSecretStore
target:
name: vault-approle-secret
creationPolicy: Owner
data:
- secretKey: roleId
remoteRef:
key: cert-manager
property: vault-approle-secret-roleid
- secretKey: secretId
remoteRef:
key: cert-manager
property: vault-approle-secret-secretid