File tree Expand file tree Collapse file tree 3 files changed +50
-0
lines changed
svc.ez.soeren.cloud/infra/vault-backup Expand file tree Collapse file tree 3 files changed +50
-0
lines changed Original file line number Diff line number Diff line change 1+ ---
2+ apiVersion : " external-secrets.io/v1beta1"
3+ kind : " ExternalSecret"
4+ metadata :
5+ name : " vault-backup"
6+ spec :
7+ refreshInterval : " 1h"
8+ secretStoreRef :
9+ name : " vault"
10+ kind : " ClusterSecretStore"
11+ target :
12+ name : " vault-backup"
13+ creationPolicy : " Owner"
14+ data :
15+ - secretKey : " AWS_ACCESS_KEY_ID"
16+ remoteRef :
17+ key : " secret/soeren.cloud/env/prod/restic/vault-prod/aws-credentials"
18+ property : " AWS_ACCESS_KEY_ID"
19+ - secretKey : " AWS_SECRET_ACCESS_KEY"
20+ remoteRef :
21+ key : " secret/soeren.cloud/env/prod/restic/vault-prod/aws-credentials"
22+ property : " AWS_SECRET_ACCESS_KEY"
Original file line number Diff line number Diff line change 1+ ---
2+ apiVersion : kustomize.config.k8s.io/v1beta1
3+ kind : Kustomization
4+ resources :
5+ - ../../../infra/vault-backup
6+ - external-secret-vault-backup.yaml
7+ configMapGenerator :
8+ - name : vault-backup
9+ options :
10+ disableNameSuffixHash : true
11+ literals :
12+ - VAULT_ADDR=https://vault.ha.soeren.cloud
13+ - RESTIC_REPOSITORY=s3:https://s3.amazonaws.com/soerenschneider-restic-prod/vault-prod
14+ - VAULT_LOGIN_AUTH_ROLE=vault-backup
15+ - VAULT_RESTIC_AWS_CREDENTIALS_SECRET_PATH=soeren.cloud/env/prod/restic/vault-prod/aws-credentials
16+ - VAULT_RESTIC_PASSWORD_SECRET_PATH=vault-backup/restic
Original file line number Diff line number Diff line change 1+ ---
2+ apiVersion : kustomize.config.k8s.io/v1beta1
3+ kind : Kustomization
4+ resources :
5+ - ../../../common/vault-backup
6+ configMapGenerator :
7+ - name : vault-backup
8+ options :
9+ disableNameSuffixHash : true
10+ behavior : merge
11+ literals :
12+ - VAULT_LOGIN_AUTH_MOUNT=svc.ez.soeren.cloud
You can’t perform that action at this time.
0 commit comments