mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Code Activity
3184 commits 135 branches 173 tags 201 MiB
Commit graph

477 commits

Author SHA1 Message Date
Gustavo Carvalho
164e8776ec Adding docs and implementing ConversionStrategy 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-09 06:59:54 -03:00
Gustavo Carvalho
2f23fd28ed Adding GetAllSecrets for Hashicorp Vault 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-09 05:40:09 -03:00
Atze de Vries
2f53ab8220 also make optional for v1beta1 and add note to docs 2022-03-03 19:35:38 +01:00
Atze de Vries
739043283c make clusterProjectID omitemtpy 2022-03-02 18:03:45 +01:00
Atze de Vries
da47ad2cac GCP: allow cluster to be in different project 2022-03-02 11:24:04 +01:00
Moritz Johner
8fc4484cc6 feat: implement validating webhook 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-03-01 21:25:15 +01:00
Moritz Johner
fb8f496204 Merge branch 'main' into feature/conversion-webhook 2022-02-23 08:15:03 +01:00
rodrmartinez
39038b03c8 enforce that exactly one auth property is used 2022-02-22 15:45:45 -03:00
rodrmartinez
0392777965 Merge branch 'main' into feature/kubernetes-provider 2022-02-22 14:57:50 -03:00
Moritz Johner
b0de9a1196 chore: bump chart version 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-22 10:41:17 +01:00
Gustavo Carvalho
f9fd1a8c52 bump version to 0.4.3 2022-02-18 09:29:53 -03:00
rodrmartinez
7c4a17a9c3 Merge branch 'main' into feature/kubernetes-provider 2022-02-17 15:38:45 -03:00
rodrmartinez
86d7710727 changing kubernetes api struct 2022-02-17 14:45:43 -03:00
Gustavo Carvalho
c0ed7de5f7 Adding status information to kubectl get css 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-17 13:13:59 -03:00
Gustavo Carvalho
40ec693479 Merge branch 'main' into feature/conversion-webhook 
Fixed conflicts and implemented necessary changes for v1beta1
 2022-02-16 16:00:32 -03:00
paul-the-alien[bot]
86aedda434
Merge pull request #701 from external-secrets/feature/template-string-interface 
feat: implement template engine v2
 2022-02-16 17:16:24 +00:00
Gustavo Carvalho
2e6017dd4b Using cobra commands instead of several binaries 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-15 08:52:52 -03:00
Gustavo Carvalho
96cb340ace Implementing Requeue Interval for certController. Fixing unit tests and check-diff 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 16:05:17 -03:00
Gustavo Carvalho
1d8cfc4a12 Changed logic of Webhook check for certs. 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 15:46:10 -03:00
Gustavo Carvalho
1587fa02b1 Improved deployments and crd logic. Added cert-controller reconcile tests 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 10:08:27 -03:00
Gustavo Carvalho
38b7393eb6 Fixed weird bug with make helm generate 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 07:25:29 -03:00
Gustavo Carvalho
0db78819bb Fixing lints and adding correct image names in eso.go 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 16:37:32 -03:00
Gustavo Carvalho
3c167edd4b Fixing some helm linting and an error on e2e Makefile 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 16:05:34 -03:00
Gustavo Carvalho
824529710f Merge branch 'main' into feature/conversion-webhook 2022-02-13 16:00:02 -03:00
Gustavo Carvalho
bbedad6053 WIP: improve deployment manifests to be on a functional state 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 15:53:40 -03:00
Gustavo Carvalho
ff62a47d47 Bumping chart version to v0.4.2 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 09:16:41 -03:00
Gustavo Carvalho
e776f6d843 WIP: implementing separate deployments 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 09:14:41 -03:00
Gustavo Carvalho
024b64fe39 Added Readiness Probe for helm charts. 
Fixed make generate command to not use kubectl
Fixed lint

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-11 08:10:11 -03:00
Moritz Johner
54e68399ec feat: implement template engine v2 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-11 08:26:31 +01:00
Gustavo Carvalho
773d362a5c Fixing Makefile and helm README 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 17:00:52 -03:00
Gustavo Carvalho
23784803ff Merge branch 'main' into feature/conversion-webhook 
Updated Oracle provider new specs for v1beta1
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 16:55:37 -03:00
Gustavo Carvalho
5ae4e4a7a2 Fixing deployment 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 15:44:13 -03:00
Gustavo Carvalho
f1d3802604 Attempting to separate webhook in a new container 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 15:38:54 -03:00
Gustavo Carvalho
b8ef9e8dba Now adding appropriate bundle 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 14:53:18 -03:00
Gustavo Carvalho
fd9e09a1ee WIP: Structured reconciliation loops for CRDs 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-10 14:12:13 -03:00
paul-the-alien[bot]
027f28ec97
Merge pull request #700 from EladGabay/elad/oci-secret-by-name 
oracle vault: Use instance principal if auth is empty
 2022-02-10 10:34:40 +00:00
Gustavo Carvalho
574953d2d8 Fixing lint and checkdiffs 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-09 11:41:31 -03:00
Gustavo Carvalho
ba8a5b7b64 Adding first structure for webhook service. 
Rewrote webhook conversion for ExternalSecrets

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-09 11:28:44 -03:00
Gustavo Carvalho
0530385992 v1beta1 initial commit 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-08 14:07:34 -03:00
Alexander Huck
2bbc033699
fix: add port name to deployment (#697) 
Co-authored-by: Alexander Huck <alexander.huck@inovex.de>
Co-authored-by: Alberto Llamas <albertollamaso@gmail.com>
 2022-02-07 20:20:01 +01:00
Elad Gabay
fe416890b1 oracle vault: Use instance principal if auth is empty 
Currently the oracle vault's secretstore uses a specific user credentials.
This commit introduce a new way to access the vault, using the instance principal.

All user's details moved to "auth" section in the OracleProvider which now is optional.
If "auth" is empty, by default, we use the instance principal, otherwise if specified user's auth details, we use them.

In addition:
- Fixed the fingerprint secret reference which until now used the privatekey secret instead of its reference.
- Bump OCI SDK version.
 2022-02-07 18:38:10 +02:00
Lucas Severo Alves
6630ab7494
Initial draft of reporter (#466) 
* Initial draft of reporter

* Test out reporter in AWS provider

* trying out different events approach

* feat: implement store reconciler and events

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: add validate() method to provider interface

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: use static requeue interval in store ctrl

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Co-authored-by: Mircea Cosbuc <mircea.cosbuc@container-solutions.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-07 11:42:18 +01:00
Lucas Severo Alves
4c5f9ae763 chore: bump version 0.4.1 
Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>
 2022-02-02 20:22:10 +01:00
Docs
9fbb6d22b0 Making reviewable 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-02 15:31:56 -03:00
Lucas Severo Alves
0e19d00c8d chore: bump chart to v0.4.0 2022-02-02 17:56:22 +01:00
paul-the-alien[bot]
5060619826
Merge pull request #614 from external-secrets/fix/docs 
Improves Documentation. Removes controller reference
 2022-02-01 19:38:32 +00:00
Moritz Johner
fe1cb8bc69 feat(provider): implement fake provider 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-01 11:18:43 +01:00
rodrmartinez
fad68e163a Update CRDs 2022-01-26 15:27:59 -03:00
rodrmartinez
b6b74350d5 Creates Kubernetes Provider secretstore 2022-01-25 17:11:12 -03:00
Gustavo Carvalho
d694bb4b9b Added make reviewable 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 09:39:37 -03:00
Gustavo Carvalho
b95d82dc39 Fixing trailing whitespace 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 09:24:00 -03:00
Gustavo Carvalho
7df28de2d8 Merge branch 'main' into fix/docs 2022-01-25 09:15:07 -03:00
Gustavo Carvalho
33fb42df53 Changed Dev guide 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 08:21:09 -03:00
Marc Billow
0753da1cbd Support for eventual consistency in Vault Enterprise 2022-01-19 16:25:01 -06:00
Moritz Johner
40ff991e17 fix: remove support for v1beta1 crds 2022-01-17 21:44:33 +01:00
Lucas Severo Alves
16948ed572
Merge pull request #596 from EladGabay/elad/oci-secret-by-name 
OCI Vault: Get secret by name from a specific Vault
 2022-01-16 17:20:46 +00:00
Elad Gabay
f50438353e oracle: Add Vault OCID to provider 2022-01-16 12:05:58 +02:00
Elad Gabay
137ce182c1 oracle: Fix provider fields docs 2022-01-16 12:02:56 +02:00
paul-the-alien[bot]
4c6b6a1e84
Merge pull request #525 from HanseMerkur/vault_optional_path 
Optional path for Vault SecretStore
 2022-01-14 19:33:29 +00:00
paul-the-alien[bot]
44d4cf061b
Merge pull request #559 from willemm/feat/generic_webhook 
Add generic webhook provider
 2022-01-11 15:50:05 +00:00
paul-the-alien[bot]
be78d56708
Merge pull request #567 from brentspector/feat/ldap-auth-path 
Add Path Parameter to LDAP and JWT/OIDC Hashicorp Vault Auth
 2022-01-10 13:11:10 +00:00
Lennart Weller
f7f521317e add generated files 2022-01-10 10:12:17 +01:00
Lucas Severo Alves
395fee02b3 chore: bump chart to 0.3.11 2022-01-06 15:08:43 +01:00
Brent Spector
26f9be4fb1 add path to jwt vault auth 2022-01-05 15:22:00 -08:00
Brent Spector
561bd3ae56 Add support for mount path in ldap auth 2022-01-05 14:54:50 -08:00
Willem Monsuwe
d04508e974 Added generic webhook provider 
This provider allows a secretstore with a generic url (templated)
which will be called with a defined method, headers (templated)
and optional body (also templated)
The response can be parsed out with a jsonPath expression
 2021-12-29 10:53:29 +01:00
Lucas Severo Alves
fc4eedfd63
Merge pull request #427 from jack-evans/concurrency 
add concurrent flag to allow more reconciles at the same time
 2021-12-27 11:10:45 +01:00
Jack Evans
5e74da3342
add specific concurrent option to helm chart 2021-12-17 15:37:38 +00:00
Moritz Johner
80fac0f697 feat: add gcp workload identity via SA 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2021-12-17 12:20:12 +01:00
paul-the-alien[bot]
78d046b712
Merge pull request #530 from ADustyOldMuffin/add-docs-and-fix-ca-vault 
Add documentation for CAProvider namespace and fix issue with SecretStore
 2021-12-16 19:44:24 +00:00
Vladimir Fedin
c351efcc15
Add ability provide CA for Yandex' Lockbox provider (#487) 
* Add ability provide CA for Yandex' Lockbox provider

* Add tests for getting CA from secrets at Lockbox provider

* fixup! Add tests for getting CA from secrets at Lockbox provider

Co-authored-by: Vladimir Fedin <vladimirfedin@yandex-team.ru>
 2021-12-16 20:16:23 +01:00
beastob
67991140e9 Add annotations to Deployment 
Signed-off-by: beastob <beastob.mark1@gmail.com>
 2021-12-15 23:46:33 +08:00
Moritz Johner
57191a4726 chore: bump chart 0.3.10 2021-12-15 10:24:52 +01:00
Daniel Hix
d53b3df7f8 Remove namespace requirement for secret store and require for cluster secret store 2021-12-13 17:07:32 -06:00
Daniel Hix
082cee230f Merge branch 'main' into ibm-enable-retries 2021-12-13 13:27:57 -06:00
paul-the-alien[bot]
1e9ba0ceb5
Merge pull request #514 from vazul/azure_managed_identity 
Supporting Managed Identity authentication for Azure Keyvault
 2021-12-07 08:45:26 +00:00
Lucas Severo Alves
81eaee7ce0 chore: bump chart 0.3.9 2021-12-06 14:50:30 +01:00
Laszlo Varadi
a976e32831 Supporting Managed Identity authentication for Azure Keyvault 2021-12-06 10:26:34 +01:00
Lucas Severo Alves
2c07e7d49a
Merge pull request #475 from renanaAkeyless/main 
Add Akeyless provider
 2021-11-16 13:09:20 +01:00
Lucas Severo Alves
f7a27b71ff Bump 0.3.8 readme 2021-11-12 16:44:31 +01:00
Lucas Severo Alves
ae943b580d Bump 0.3.8 2021-11-12 16:42:54 +01:00
renanaAkeyless
0348bbb59d lint 2021-11-08 13:27:12 +02:00
renanaAkeyless
234f3281ab deplay 2021-11-07 16:30:20 +02:00
renanaAkeyless
4a5877d926 Adde Akeyless 2021-11-07 16:18:40 +02:00
Gustavo Fernandes de Carvalho
9500f8e4b2 Bumping version to 0.3.7 
Signed-off-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com>
 2021-10-27 16:12:08 -03:00
Daniel Hix
99f49feee4 Add retry settings to secret store CRD 2021-10-20 18:50:01 -05:00
paul-the-alien[bot]
d9f30a3350
Merge pull request #414 from ADustyOldMuffin/vault-ca-provider 
Add the ability to specify cert for Vault from K8s Secrets
 2021-10-20 21:43:37 +00:00
Lucas Severo Alves
c00afc9ff7
Merge pull request #329 from FGA-GCES/feat/immutable-secrets 
Add immutable secrets
 2021-10-12 18:20:23 +02:00
Daniel Hix
b3a44fdbd0
Merge branch 'external-secrets:main' into vault-ca-provider 2021-10-06 10:38:59 -05:00
Daniel Hix
8e303e6d77 Add caProvider to types 2021-10-05 23:55:44 -05:00
Lucas Severo Alves
65b8efa704
Fix release readme 2021-10-05 18:46:22 +02:00
Sebastián Gómez
339d7528c6
Bumping chart version v0.3.6 2021-10-05 11:39:17 -03:00
Arthur
9f2a17f220 Merge branch 'main' into feat/immutable-secrets 2021-09-22 14:20:35 -03:00
Kian
694db476f9 Making changes based on feedback 2021-09-03 11:14:17 +01:00
Kian
8f4f95102e Fixing doc and lint issues. Adding necessary documentation 2021-09-02 16:06:52 +01:00
KianTigger
9d6f7ac46f Merge branch 'main' of https://github.com/external-secrets/external-secrets into external-secrets-main 2021-09-02 15:23:54 +01:00
Kian
baa91c75c8 Completed Oracle provider, e2e tests non functional due to lack of company OCI account 2021-09-02 15:19:47 +01:00
Elsa Chelala
db5b4c5044 eat: add status printcolumn to ES CRD (#318) 
Formatting changes
 2021-08-31 13:14:09 -04:00
Elsa Chelala
7f6dcb5edb WiP: Alibaba Provider 2021-08-30 15:25:26 -04:00
Ted
6f1fae0637 feat: specify GitLab URL to connect to 2021-08-27 18:19:28 -04:00
Kian
926e37448a Developing unit tests and fixing provider files. In process of starting to write e2e test files 2021-08-27 16:09:39 +01:00
Lucas Severo Alves
11b500d30d chore: bump chart 0.3.5 2021-08-26 10:25:28 +02:00
Lucas Severo Alves
a4c2c93255 fix: rebase conflits 2021-08-25 16:54:16 +02:00
Lucas Severo Alves
21df9b5729 fix: error strings 2021-08-25 16:47:06 +02:00
jabray5
d45469acc7 operator functional and retrieves secrets from gitlab 2021-08-25 16:47:05 +02:00
zamysel
ec7d3a3517 Add support for Yandex Lockbox 2021-08-25 11:25:17 +03:00
zamysel
0dc8842b85 Merge branch 'main' into lockbox 2021-08-25 11:23:15 +03:00
Lucas Severo Alves
0f5f9bcf84 chore: bump chart 2021-08-24 19:54:44 +02:00
paul-the-alien[bot]
52e3e80a16
Merge pull request #339 from mouhsen-ibrahim/add-workload-identity-support 
Add support for Google Cloud Identity
 2021-08-24 17:00:42 +00:00
Lucas Severo Alves
7fbbb37b59
Merge pull request #320 from spirosoik/feat/iss-289 
Add the ability of ESO to reconcile only in scoped namespace
 2021-08-24 18:49:50 +02:00
Mouhsen Ibrahim
03f3622c2c make auth key for GCPSM provider optional 2021-08-24 14:22:06 +02:00
Mouhsen Ibrahim
fa7cc50433 format crds 2021-08-24 08:50:51 +02:00
paul-the-alien[bot]
9c28ed0aae
Merge pull request #338 from kolorful/main 
Allow setting priorityClassName
 2021-08-23 21:02:12 +00:00
Kewei Ma
855e63ae45
Allow setting priorityClassName 2021-08-23 15:38:52 -05:00
Mouhsen Ibrahim
403a47c116 Add support for Google Cloud Identity 
If the name of the service account secret is kept
empty, this means we want to use Google Cloud Identity
to authenticate against the GCP project
 2021-08-23 22:28:24 +02:00
Anthony Anderson
1faf3aaf99 add namespace to deployment and service account templates 2021-08-23 09:46:39 -04:00
zamysel
c7229199f3 Add support for Yandex Lockbox: custom API endpoint 2021-08-20 16:16:35 +03:00
Spiros Economakis
5e3b2a0ad0
Add the ability of ESO to reconcile only in scoped namespace 
By default ESO reconciles `Kind=ExternalSecret` across every namespace
in a k8s cluster. With the new flag `--nameespace` we can scope the
reconciling only to the provided namespace.

Ticket: #289
 2021-08-20 14:29:44 +03:00
zamysel
42a3e2c457 Add support for Yandex Lockbox: docs 2021-08-19 17:33:36 +03:00
Arthur
c8315865a1 add immutable field on ExternalSecretTarget and on v1.Secret creation 
Co-authored-by: mouhsen-ibrahim <mouhsen.ibrahim@gmail.com>
 2021-08-18 19:55:10 -03:00
zamysel
6b2f852eb6 Add support for Yandex Lockbox: custom API endpoint 2021-08-17 20:13:13 +03:00
zamysel
7017935888 Add support for Yandex Lockbox 2021-08-12 20:05:02 +03:00
HenningE
328cf881b8
feat: add status printcolumn to ES CRD (#318) 2021-08-10 17:10:56 +02:00
Moritz Johner
b14ef0281a chore(helm): bump 0.3.3 2021-08-07 23:59:46 +02:00
paul-the-alien[bot]
e65658d543
Merge pull request #265 from ricardoptcosta/mtls-auth 
feat: adding Vault TLS client authentication
 2021-07-30 14:20:42 +00:00
Moritz Johner
2f61ee2d7e chore: bump helm chart 2021-07-29 09:21:25 +02:00
Andrew
45ef86e8db
unable to patch secret. is forbidden 2021-07-28 14:50:29 -07:00
Moritz Johner
c658e42967 chore: bump helm 2021-07-28 17:03:10 +02:00
ric
2ab70cc510 Merge branch 'main' into mtls-auth 2021-07-26 09:43:56 +01:00
paul-the-alien[bot]
bd6e868474
Merge pull request #279 from zeonin/main 
Fix Openshift 4.7 issues
 2021-07-25 13:01:17 +00:00
Moritz Johner
52f24f2c31 chore: bump helm 2021-07-25 14:16:40 +02:00
Lawrence Brogan
3a4dfadb68 Fix Openshift 4.7 issues 
Add `externalsecrets/finalizers` to the controller ClusterRole.

Loop through all ServiceAccount secrets for the token before failing
unstead of solely checking the first one.
 2021-07-23 11:31:16 -06:00
ric
44ef7756ef refactoring to implement changes suggested in pull request 265 ,namely, 1) fetch client certificate and key as tls k8s secrets and 2) pass them directly to TLSClientConfig avoiding storing in disk 2021-07-21 22:30:49 +01:00
ric
4221c1b151 remove cacert from client Authentication. It's already in CABundle. 2021-07-20 14:44:58 +01:00
Moritz Johner
466938522c feat(aws): add jwt authentication 2021-07-17 20:39:24 +02:00
ric
0edf4154da merge with main 2021-07-14 14:26:04 +01:00
ric
7d2d83d695 update crds to inclue client and ca certs but not client private key 2021-07-14 12:59:04 +01:00
ric
73be01d492 most work done - missing unit tests and path do certs 2021-07-13 21:44:10 +01:00
paul-the-alien[bot]
c70e83c5de
Merge pull request #259 from external-secrets/feature/creation-policy 
feat(ctrl): implement creationPolicy=Merge/None
 2021-07-13 15:44:29 +00:00
Moritz Johner
59a851c941 feat(ctrl): implement creationPolicy=Merge/None 2021-07-12 18:45:44 +02:00
Moritz Johner
239f1c835b chore: bump helm 2021-07-10 21:52:17 +02:00
ric
6170b2ceb8 bump to version 0.2.2 2021-07-08 22:31:06 +01:00
Andrew
d1af4756d6
Add configmap rules for templateFrom 
https://github.com/external-secrets/external-secrets/issues/179
 2021-07-06 13:31:24 -07:00
ric
fd53e76247 feat: ibm provider implementation 
Co-authored-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com>
Co-authored-by: Lucas Severo <lucassalves65@gmail.com>
Co-authored-by: Joey Brayshaw <joeybrayshaw@gmail.com>
Co-authored-by: Elsa Chelala <elsachelala@gmail.com>
Co-authored-by: choilmto <choilmto@gmail.com>
Co-authored-by: Adrian Mouat <adrian.mouat@gmail.com>
Co-authored-by: ricardoptcosta <ricardoptcosta@gmail.com>
Co-authored-by: Gabi Beyer <Gabrielle.Beyer@container-solutions.com>
Co-authored-by: Tomasz Tarczynski <ttarczynski@users.noreply.github.com>
Co-authored-by: Mircea Cosbuc <mircea.cosbuc@container-solutions.com>
 2021-07-02 16:00:05 +02:00
paul-the-alien[bot]
04219ded4e
Merge pull request #222 from external-secrets/feat/template-from 
implement templateFrom
 2021-06-29 13:43:48 +00:00
Moritz Johner
73ca014cfb feat: implement templateFrom 2021-06-28 21:29:09 +02:00
paul-the-alien[bot]
1704c15e92
Merge pull request #219 from external-secrets/docs/store 
chore(docs): document es update behavior
 2021-06-27 15:04:37 +00:00
Lucas Severo Alves
641d224293 Bump to 0.2.1 version 2021-06-25 23:58:23 +02:00
Moritz Johner
fb726dfb17 chore(docs): document es update behavior 2021-06-25 22:48:54 +02:00
Moritz Johner
5ac02ed2c4 feat: add synced resource version status 2021-06-25 21:23:29 +02:00
Lucas Severo Alves
7a16d0bcf8 Release 0.2.0 2021-06-09 18:28:00 +02:00
Ahmed MUSTAFA
07254798ee Avoid using Env variables for authorization , fix lint errors 2021-06-07 10:54:50 +02:00
Nicolas Courbet
0e49b84f6d Rebase on master, and rework unit tests 2021-06-02 17:14:58 +02:00
Kellin McAvoy
f0efb59f94 ci: add helm.docs target to helm generate 2021-05-27 13:36:08 -05:00
Gabi
53e21034d5 Fix merge conflicts to add GCP secret manager 2021-05-27 11:43:34 +02:00
Lucas Severo Alves
98dddba1a7 bumping version for release 2021-05-27 11:40:42 +02:00
Moritz Johner
e5d6e30d00 fix: template data should be string, fix update mechanics 2021-05-20 08:46:22 +02:00
Lucas Severo Alves
24fda3ba71
chore: Bump chart and app versions 2021-05-18 20:04:33 +02:00
paul-the-alien[bot]
4a1d43f1ed
Merge pull request #152 from xxxbobrxxx/vault-ldap-auth-method 
Vault ldap and jwt/oidc auth methods
 2021-05-18 17:45:42 +00:00
KeisukeYamashita
1e60bedb6f
fix: remove arg of deployment when no arg specified 
Signed-off-by: KeisukeYamashita <19yamashita15@gmail.com>
 2021-05-17 01:11:43 +09:00
xxxbobrxxx
f112d45aef #150 Fix json fields names 2021-05-14 12:39:41 +03:00
xxxbobrxxx
c900c8deb5 #150 Fix JWT bugs 2021-05-14 09:40:13 +03:00
xxxbobrxxx
10218d1ef7 #150 Small corrections, generate docs 2021-05-13 19:32:06 +03:00
xxxbobrxxx
e4d8fb4046 #150 Implement LDAP and JWT/OIDC auth methods 2021-05-13 19:19:57 +03:00
xxxbobrxxx
704e7a785b #150 Define data model for the Vault LDAP auth method 2021-05-13 18:02:04 +03:00
Kellin McAvoy
bac338ed74 fix: prerelease versions are valid 2021-05-12 11:05:54 -05:00
Moritz Johner
291dd0569f fix: appVersion needs prefix 2021-05-05 21:11:29 +02:00
Cameron McAvoy
a9c2668e9e
Update rbac.yaml to give the controller "create" permission on leases 
The current helm chart does not grant the controller the appropriate "create" permission on leases for leader election to work.
 2021-05-03 10:51:43 -05:00
Jeremy Bopp
5afa7795af Add aggregated ClusterRoles for view and edit permissions of custom resources 2021-04-30 19:39:16 -05:00
Moritz Johner
aaa6ad0ca8 fix: make vault version optional w/ defaults 
fixes #117
 2021-04-28 18:46:16 +02:00
Moritz Johner
8c8064e0e1
Draft: feat: implement template (#69) 
* feat: implement template
 2021-04-23 08:22:23 +02:00
Cameron McAvoy
f2d77e0324 Add service account selector to vault provider to look up the sa token 2021-04-19 13:26:29 -05:00
Moritz Johner
2f9f9dcf8f fix: regenerate manifests 2021-04-14 22:43:24 +02:00
Kellin
400a1f6a5a
Merge pull request #92 from mcavoyk/cleanup-kustomize 
Cleanup and remove kustomize manifests in favor of Helm chart
 2021-04-14 11:19:37 -04:00
Kellin McAvoy
6318811108 Cleanup and remove kustomize manifests in favor of Helm chart 2021-04-08 13:56:11 -05:00
Cameron McAvoy
52a2522d9f Add RBAC for leader election in the helm chart 2021-04-07 11:00:43 -05:00
Kellin McAvoy
a7a074dd02 feat: initial helm chart 2020-12-22 15:27:16 -05:00