external-secrets: back to token again??

2021-10-29 21:33:16 +02:00 · 2021-10-29 21:33:16 +02:00 · b9519be477
parent e22c22a58a
commit b9519be477
1 changed files with 15 additions and 15 deletions
--- a/cluster/core/external-secrets/external-secrets/vault-secret-store.yaml
+++ b/cluster/core/external-secrets/external-secrets/vault-secret-store.yaml
@ -13,18 +13,18 @@ spec:
        # VaultAppRole authenticates with Vault using the
        # App Role auth mechanism
        # https://www.vaultproject.io/docs/auth/approle
-        # tokenSecretRef:
+        tokenSecretRef:
-        #   name: "vault-secret-id"
+          name: "vault-secret-id"
-        #   namespace: "external-secrets"
+          namespace: "external-secrets"
-        #   key: "token"
+          key: "token"
-        appRole:
+        # appRole:
-          # Path where the App Role authentication backend is mounted
+        #   # Path where the App Role authentication backend is mounted
-          path: "approle"
+        #   path: "approle"
-          # RoleID configured in the App Role authentication backend
+        #   # RoleID configured in the App Role authentication backend
-          roleId: "bb841a0e-45c1-9dab-36f0-f72647d6aff0"
+        #   roleId: "bb841a0e-45c1-9dab-36f0-f72647d6aff0"
-          # Reference to a key in a K8 Secret that contains the App Role SecretId
+        #   # Reference to a key in a K8 Secret that contains the App Role SecretId
-          # (not commited in git)
+        #   # (not commited in git)
-          secretRef:
+        #   secretRef:
-            name: "vault-secret-id"
+        #     name: "vault-secret-id"
-            namespace: "external-secrets"
+        #     namespace: "external-secrets"
-            key: "secret-id"
+        #     key: "secret-id"