Skip to content

Commit 4a45fbd

Browse files
abhiyerraabhiyerra
authored
Add additional secret mounts (#63)
1 parent 45ad7bf commit 4a45fbd

File tree

3 files changed

+46
-1
lines changed

3 files changed

+46
-1
lines changed

README.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -39,6 +39,9 @@ jobs:
3939
name: yieldpayroll
4040
defaultImage: nginx:latest
4141
42+
secretsAdditionalMounts:
43+
"/1password": 1password # path, secret name
44+
4245
# Override with: https://artifacthub.io/packages/helm/bitnami/redis
4346
redis:
4447
enabled: true # Enable Redis

charts/tiphys/Chart.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@ apiVersion: v2
22
name: tiphys
33
description: A High Level Helm Chart
44
type: application
5-
version: 0.9.29
5+
version: 0.9.30
66
appVersion: 1.16.3
77

88
dependencies:

charts/tiphys/templates/app.yaml

Lines changed: 42 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -56,6 +56,13 @@ spec:
5656
mountPath: "/app-secrets"
5757
readOnly: true
5858
{{- end }}
59+
{{- if $.Values.secretsAdditionalMounts }}
60+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
61+
- name: {{ $name }}
62+
mountPath: {{ $path | quote }}
63+
readOnly: true
64+
{{- end }}
65+
{{- end }}
5966
volumes:
6067
- name: secrets
6168
secret:
@@ -65,6 +72,13 @@ spec:
6572
secret:
6673
secretName: {{ template "opszero.fullname" $ }}-{{ $app.name }}
6774
{{- end }}
75+
{{- if $.Values.secretsAdditionalMounts }}
76+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
77+
- name: {{ $name }}
78+
secret:
79+
secretName: {{ $name }}
80+
{{- end }}
81+
{{- end }}
6882
{{- end }}
6983
{{- end }}
7084

@@ -206,6 +220,13 @@ spec:
206220
mountPath: "/app-secrets"
207221
readOnly: true
208222
{{- end }}
223+
{{- if $.Values.secretsAdditionalMounts }}
224+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
225+
- name: {{ $name }}
226+
mountPath: {{ $path | quote }}
227+
readOnly: true
228+
{{- end }}
229+
{{- end }}
209230
{{- with $app.service.volumeMounts }}
210231
{{- toYaml . | nindent 12 }}
211232
{{- end }}
@@ -218,6 +239,13 @@ spec:
218239
secret:
219240
secretName: {{ template "opszero.fullname" $ }}-{{ $app.name }}
220241
{{- end }}
242+
{{- if $.Values.secretsAdditionalMounts }}
243+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
244+
- name: {{ $name }}
245+
secret:
246+
secretName: {{ $name }}
247+
{{- end }}
248+
{{- end }}
221249
{{- with $app.service.volumes }}
222250
{{- toYaml . | nindent 8 }}
223251
{{- end }}
@@ -377,6 +405,13 @@ spec:
377405
mountPath: "/app-secrets"
378406
readOnly: true
379407
{{- end }}
408+
{{- if $.Values.secretsAdditionalMounts }}
409+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
410+
- name: {{ $name }}
411+
mountPath: {{ $path | quote }}
412+
readOnly: true
413+
{{- end }}
414+
{{- end }}
380415
{{- with $cronjob.volumeMounts }}
381416
{{- toYaml . | nindent 16 }}
382417
{{- end }}
@@ -389,6 +424,13 @@ spec:
389424
secret:
390425
secretName: {{ template "opszero.fullname" $ }}-{{ $app.name }}
391426
{{- end }}
427+
{{- if $.Values.secretsAdditionalMounts }}
428+
{{- range $name, $path := $.Values.secretsAdditionalMounts }}
429+
- name: {{ $name }}
430+
secret:
431+
secretName: {{ $name }}
432+
{{- end }}
433+
{{- end }}
392434
{{- with $cronjob.volumes }}
393435
{{- toYaml . | nindent 12 }}
394436
{{- end }}

0 commit comments

Comments
 (0)