Skip to content

Commit 9d38899

Browse files
guzzijonesguzzijones
committed
add external secret for datastore encryption
1 parent 7ee24be commit 9d38899

File tree

2 files changed

+15
-7
lines changed

2 files changed

+15
-7
lines changed

templates/_helpers.tpl

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -78,6 +78,14 @@ Create the name of the stackstorm-ha st2 auth secret to use
7878
{{- default $name .Values.st2.existingAuthSecret -}}
7979
{{- end -}}
8080

81+
{{/*
82+
Create the name of the stackstorm-ha st2 datastore secret to use
83+
*/}}
84+
{{- define "stackstorm-ha.secrets.st2Datastore" -}}
85+
{{- $name := print .Release.Name "-st2-datastore" -}}
86+
{{- default $name .Values.st2.existingDatastoreSecret -}}
87+
{{- end -}}
88+
8189

8290
{{/*
8391
Generate '-' prefix only when the variable is defined

templates/deployments.yaml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -233,7 +233,7 @@ spec:
233233
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
234234
- name: st2-encryption-key-vol
235235
secret:
236-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
236+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
237237
items:
238238
- key: datastore_crypto_key
239239
path: datastore_key.json
@@ -588,7 +588,7 @@ spec:
588588
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
589589
- name: st2-encryption-key-vol
590590
secret:
591-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
591+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
592592
items:
593593
- key: datastore_crypto_key
594594
path: datastore_key.json
@@ -809,7 +809,7 @@ spec:
809809
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
810810
- name: st2-encryption-key-vol
811811
secret:
812-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
812+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
813813
items:
814814
- key: datastore_crypto_key
815815
path: datastore_key.json
@@ -924,7 +924,7 @@ spec:
924924
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
925925
- name: st2-encryption-key-vol
926926
secret:
927-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
927+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
928928
items:
929929
- key: datastore_crypto_key
930930
path: datastore_key.json
@@ -1230,7 +1230,7 @@ spec:
12301230
{{- if ne "disable" (default "" $.Values.st2.datastore_crypto_key) }}
12311231
- name: st2-encryption-key-vol
12321232
secret:
1233-
secretName: {{ $.Release.Name }}-st2-datastore-crypto-key
1233+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" $ }}
12341234
items:
12351235
- key: datastore_crypto_key
12361236
path: datastore_key.json
@@ -1379,7 +1379,7 @@ spec:
13791379
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
13801380
- name: st2-encryption-key-vol
13811381
secret:
1382-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
1382+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
13831383
items:
13841384
- key: datastore_crypto_key
13851385
path: datastore_key.json
@@ -1658,7 +1658,7 @@ spec:
16581658
{{- if ne "disable" (default "" .Values.st2.datastore_crypto_key) }}
16591659
- name: st2-encryption-key-vol
16601660
secret:
1661-
secretName: {{ .Release.Name }}-st2-datastore-crypto-key
1661+
secretName: {{ include "stackstorm-ha.secrets.st2Datastore" . }}
16621662
items:
16631663
- key: datastore_crypto_key
16641664
path: datastore_key.json

0 commit comments

Comments
 (0)