From 47e01d4f79d930ea1eb5efde56fabf68a910cd08 Mon Sep 17 00:00:00 2001 From: Victor Date: Wed, 18 Jan 2023 11:42:54 +0100 Subject: [PATCH] add external secrets --- .../base/flux-system/kustomization.yaml | 1 + .../repositories/helm/external-secrets.yaml | 9 ++++++ .../repositories/helm/kustomization.yaml | 5 ++++ .../repositories/kustomization.yaml | 5 ++++ .../core/external-secrets/helm-release.yaml | 29 +++++++++++++++++++ .../core/external-secrets/kustomization.yaml | 4 +++ 6 files changed, 53 insertions(+) create mode 100644 flux/olympus/base/flux-system/repositories/helm/external-secrets.yaml create mode 100644 flux/olympus/base/flux-system/repositories/helm/kustomization.yaml create mode 100644 flux/olympus/base/flux-system/repositories/kustomization.yaml create mode 100644 flux/olympus/core/external-secrets/helm-release.yaml create mode 100644 flux/olympus/core/external-secrets/kustomization.yaml diff --git a/flux/olympus/base/flux-system/kustomization.yaml b/flux/olympus/base/flux-system/kustomization.yaml index 3842229..9acdad9 100644 --- a/flux/olympus/base/flux-system/kustomization.yaml +++ b/flux/olympus/base/flux-system/kustomization.yaml @@ -3,3 +3,4 @@ kind: Kustomization resources: - gotk-components.yaml - gotk-sync.yaml +- repositories \ No newline at end of file diff --git a/flux/olympus/base/flux-system/repositories/helm/external-secrets.yaml b/flux/olympus/base/flux-system/repositories/helm/external-secrets.yaml new file mode 100644 index 0000000..65405ea --- /dev/null +++ b/flux/olympus/base/flux-system/repositories/helm/external-secrets.yaml @@ -0,0 +1,9 @@ +--- +apiVersion: source.toolkit.fluxcd.io/v1beta2 +kind: HelmRepository +metadata: + name: external-secrets + namespace: flux-system +spec: + interval: 1h + url: https://charts.external-secrets.io diff --git a/flux/olympus/base/flux-system/repositories/helm/kustomization.yaml b/flux/olympus/base/flux-system/repositories/helm/kustomization.yaml new file mode 100644 index 0000000..9e58514 --- /dev/null +++ b/flux/olympus/base/flux-system/repositories/helm/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - external-secrets.yaml + diff --git a/flux/olympus/base/flux-system/repositories/kustomization.yaml b/flux/olympus/base/flux-system/repositories/kustomization.yaml new file mode 100644 index 0000000..dadf6d6 --- /dev/null +++ b/flux/olympus/base/flux-system/repositories/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - helm + diff --git a/flux/olympus/core/external-secrets/helm-release.yaml b/flux/olympus/core/external-secrets/helm-release.yaml new file mode 100644 index 0000000..32c0355 --- /dev/null +++ b/flux/olympus/core/external-secrets/helm-release.yaml @@ -0,0 +1,29 @@ +--- +apiVersion: helm.toolkit.fluxcd.io/v2beta1 +kind: HelmRelease +metadata: + name: external-secrets + namespace: security +spec: + interval: 30m + chart: + spec: + chart: external-secrets + version: 0.7.2 + interval: 30m + sourceRef: + kind: HelmRepository + name: external-secrets + namespace: flux-system + values: + installCRDs: true + replicaCount: 1 + leaderElect: true + serviceMonitor: + enabled: true + webhook: + serviceMonitor: + enabled: true + certController: + serviceMonitor: + enabled: true diff --git a/flux/olympus/core/external-secrets/kustomization.yaml b/flux/olympus/core/external-secrets/kustomization.yaml new file mode 100644 index 0000000..34a8531 --- /dev/null +++ b/flux/olympus/core/external-secrets/kustomization.yaml @@ -0,0 +1,4 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - helm-release.yaml