external-secrets

mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00

Author	SHA1	Message	Date
Lucas Severo Alves	5639d26f9f	bump 0.9.7 chart (#2796 )	2023-10-22 15:53:51 +02:00
Moritz Johner	9e6a69fd51	feat: bump go + deps (#2794 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-10-20 09:28:14 +09:00
dependabot[bot]	96c4f0c160	chore(deps): bump golang from 1.21.2-alpine to 1.21.3-alpine (#2787 ) Bumps golang from 1.21.2-alpine to 1.21.3-alpine.	2023-10-17 19:32:18 +02:00
eso-service-account-app[bot]	1f1d738b22	update dependencies (#2788 )	2023-10-17 19:30:09 +02:00
Lucas Severo Alves	7b8f36b2f0	bump chart to 0.9.6 (#2786 ) * bump chart to 0.9.6 Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>	2023-10-15 16:43:26 +02:00
Moritz Johner	d42ccaaf78	docs: mention auth-delegator role in vault provider (#2734 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-10-13 15:50:40 +02:00
Shuhei Kitagawa	7b57943c55	Fix the k8s double encoding problem (#2760 ) https://github.com/external-secrets/external-secrets/issues/2745 Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-10-12 21:45:01 +02:00
Kevin van den Broek	f0ae0e81ee	fix: enable sharedConfigState in AWS auth provider (#2777 ) The value `session.SharedConfigDisable` prevented the AWS SDK to use the default provider chain. By removing this value from the getAWSSession function the default SDK provider chain is used. This enables the SDK to use the shared config file: https://github.com/aws/aws-sdk-go/blob/main/aws/session/env_config.go#L84 as well as the shared credentials file: https://github.com/aws/aws-sdk-go/blob/main/aws/session/env_config.go#L76 This fixes the code to be correct with the documentation of NewGeneratorSession which notes that it uses the authentication order: 1. service-account token. 2. static credentials. 3. sdk default provider. See also the AWS documentation: https://github.com/aws/aws-sdk-go/blob/main/aws/session/session.go#L158 Signed-off-by: Kevin van den Broek <info@kevinvandenbroek.nl>	2023-10-12 09:18:17 +02:00
Sebastián Gómez	f5a4107b3f	Updated docum of PushSecret (#2391 ) * Updated docum of PushSecret Closes #2242 Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * Updated image and completed diagram file Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> --------- Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com>	2023-10-11 21:20:50 +02:00
Shuhei Kitagawa	5421ec503f	Oracle provider retry (#2762 ) * add oracle provider retry capabilities Signed-off-by: Andrei Ilas <andrei.ilas@oracle.com> * add oracle provider retry capabilities unit test Signed-off-by: Andrei Ilas <andrei.ilas@oracle.com> * Update unit tests for the Oracle provider retry config Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: Andrei Ilas <andrei.ilas@oracle.com> Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Co-authored-by: Andrei Ilas <andrei.ilas@oracle.com> Co-authored-by: Andrei Ilas <andrei.cva@gmail.com>	2023-10-11 08:49:32 +02:00
Shanti G	583b919cb7	leverage IBM provider's latest API to get the secret by name (#2750 )	2023-10-11 07:35:53 +03:00
Bradley Jenkins	6aa1318cc5	[adopters] Adding Pets at home (#2773 )	2023-10-10 19:15:19 +02:00
dependabot[bot]	ab67573f1d	chore(deps): bump golang from 1.21.1-alpine to 1.21.2-alpine (#2766 ) Bumps golang from 1.21.1-alpine to 1.21.2-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-09 10:33:12 +02:00
dependabot[bot]	b28da8f61c	chore(deps): bump actions/setup-python from 4.7.0 to 4.7.1 (#2765 ) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.7.0 to 4.7.1. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v4.7.0...v4.7.1) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-09 10:19:20 +02:00
eso-service-account-app[bot]	c3c803bfe7	update dependencies (#2749 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-10-02 13:19:34 +02:00
Gary Hodgson	bb63bad38c	add force flag to bitwarden sync (#2742 ) Whilst implementing integration with Vaultwarden I noticed that the local vault was not being updated. I had to add "force=true" to the sync api call for it to work as expected. Signed-off-by: Gary Hodgson <gary.s.hodgson@gmail.com>	2023-09-29 12:41:03 +02:00
Florent Viel	24f1a093e5	Scaleway secret path (#2737 ) * feat: add path support for scaleway provider Signed-off-by: Florent Viel <fviel@scaleway.com> * feat: update scaleway testcases for path support Signed-off-by: Florent Viel <fviel@scaleway.com> * docs: update scaleway doc to add path support Signed-off-by: Florent Viel <fviel@scaleway.com> * fix: change func signature to make linter pass Signed-off-by: Florent Viel <fviel@scaleway.com> --------- Signed-off-by: Florent Viel <fviel@scaleway.com>	2023-09-28 21:00:16 +02:00
Adrian Rico	5fdcba0f14	doc: add remember note for clusterLocation (#2741 ) Signed-off-by: Adrian Rico <adrian.rico@ackstorm.com> Co-authored-by: Adrian Rico <adrian.rico@ackstorm.com>	2023-09-28 17:16:53 +02:00
Ben Bertrands	cfb629c020	Support PushSecret Property for AWS SM (#2623 ) * Support PushSecret Property for AWS SM Signed-off-by: Ben Bertrands <public@bb-it.dev> * Support PushSecret Property for AWS SM: leverage the VersionId field to prevent a "LostUpdate" concurrency problem Signed-off-by: Ben Bertrands <public@bb-it.dev> * Support PushSecret Property for AWS SM: errors.Join doesn't exist in go 1.19 Signed-off-by: Ben Bertrands <public@bb-it.dev> * Support PushSecret Property for AWS SM: use an incrementing uuid for the secret version Signed-off-by: Ben Bertrands <public@bb-it.dev> --------- Signed-off-by: Ben Bertrands <public@bb-it.dev> Signed-off-by: Ben Bertrands <8938515+benbertrands@users.noreply.github.com>	2023-09-26 13:18:18 +02:00
Shuhei Kitagawa	953af0d1a2	Reflect certController.readinessProbe.port to readinessProbe (#2732 ) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>	2023-09-26 12:21:19 +02:00
Shuhei Kitagawa	a8eff34d49	Fix helm.test by reflecting recent changes (#2733 ) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-09-26 08:58:34 +02:00
antoniolago	1b48459951	Complement full-cluster-secret-store oracle example (#2731 ) Add namespace to secretRef.privatekey and secretRef.fingerprint in oracle provider example at full-cluster-secret-store.yaml to avoid confusion like in #2727 Signed-off-by: antoniolago <45375617+antoniolago@users.noreply.github.com>	2023-09-25 21:23:55 +02:00
eso-service-account-app[bot]	b9ecb18cb7	update dependencies (#2729 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-25 13:30:59 +02:00
Kieran Bristow	d9eaeb40dc	Conjur JWT support (#2591 ) * Add JWT Auth to Conjur Provider Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Update docs for Cyberark Conjur Provider Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Update test suite to cover new functionality Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Run make reviewable Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Set MinVersion for tls.Config to satisfy linting Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Move ca bundle config example to a yaml snippet Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * fix: consolidate naming Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: consolidate naming Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * docs: make it a working example Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Remove JWT expiration handling logic Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Run make fmt Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> --------- Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-25 10:05:17 +02:00
Shuhei Kitagawa	719e8b1c82	Let ManagedField handle metadata (#2705 ) https://github.com/external-secrets/external-secrets/issues/2682 Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-09-25 09:33:00 +02:00
Moritz Johner	e56c9867f0	chore: bump version (#2725 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-21 23:29:11 +02:00
Moritz Johner	b9f8ddad20	chore: update dependencies (#2724 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-21 22:14:02 +02:00
Moritz Johner	d59512e604	fix: assign default value to prevent nil panic (#2722 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-21 22:01:40 +02:00
Shuhei Kitagawa	150e3dfde1	Use locks for GCP PushSecrets (#2678 ) * Use locks for GCP PushSecrets Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Share locks among providers Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-09-21 17:15:16 +02:00
Markus Lackner	a025b77e49	fix: do not recreate secret if deletion timestamp is set (#2718 ) Signed-off-by: Markus Lackner <33040521+markuslackner@users.noreply.github.com>	2023-09-20 23:21:47 +02:00
rteeling	ddae00dd6d	Documentation: callout templating escapes for helm users (#2704 ) * callout templating escapes for helm users Signed-off-by: rteeling <rteeling@users.noreply.github.com> * quote the snippet file Signed-off-by: rteeling <rteeling@users.noreply.github.com> --------- Signed-off-by: rteeling <rteeling@users.noreply.github.com> Co-authored-by: rteeling <rteeling@users.noreply.github.com>	2023-09-20 21:20:14 +02:00
Joey Stout	c757319a09	docs(docs/snippets/gitops/deployment.yaml): updated the example doc to show 0.9.4 (#2715 ) Signed-off-by: apollorion <joey@apollorion.com>	2023-09-20 00:00:19 +02:00
eso-service-account-app[bot]	157016b6bb	update dependencies (#2710 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-18 13:58:06 +02:00
dependabot[bot]	5c8484209a	chore(deps): bump docker/setup-buildx-action from 2 to 3 (#2706 ) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2 to 3. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v3) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-18 10:31:50 +02:00
dependabot[bot]	aa6be5883e	chore(deps): bump docker/login-action from 2 to 3 (#2708 ) Bumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v2...v3) --- updated-dependencies: - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-18 10:31:09 +02:00
dependabot[bot]	54475eb5a6	chore(deps): bump docker/setup-qemu-action from 2 to 3 (#2707 ) Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2 to 3. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v2...v3) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-18 10:30:36 +02:00
Moritz Johner	9559c2a124	fix: ensure to correctly encode binary data as base64 (#2681 ) Also disable HTML escape. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-15 19:34:53 +02:00
Moritz Johner	b78ce75218	fix: do not swallow errors when create or update fails (#2693 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-15 06:21:34 +02:00
dependabot[bot]	3dcd3df41c	chore(deps): bump golang from 1.21.0-alpine to 1.21.1-alpine (#2688 ) Bumps golang from 1.21.0-alpine to 1.21.1-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-11 15:10:25 +02:00
dependabot[bot]	62e96fca4c	chore(deps): bump actions/checkout from 3 to 4 (#2687 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>	2023-09-11 12:23:07 +02:00
Parth Patel	d44dde95ed	Fix: Replaced selectorLabels with labels (#2672 ) * Fix: Replaced selectorLabels with labels Signed-off-by: Parth Patel <p.patel81@yahoo.com> * Fix: Updated snapshot labels Signed-off-by: Parth Patel <p.patel81@yahoo.com> --------- Signed-off-by: Parth Patel <p.patel81@yahoo.com>	2023-09-11 12:03:38 +02:00
dependabot[bot]	64f100736f	chore(deps): bump tibdex/github-app-token from 1 to 2 (#2686 ) Bumps [tibdex/github-app-token](https://github.com/tibdex/github-app-token) from 1 to 2. - [Release notes](https://github.com/tibdex/github-app-token/releases) - [Commits](https://github.com/tibdex/github-app-token/compare/v1...v2) --- updated-dependencies: - dependency-name: tibdex/github-app-token dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-11 10:42:04 +02:00
Parth Patel	0a490f9181	feat: Updated check ServiceMontior check to include APIVersions check for helm charts (#2683 ) * feat: Added check for APIVersions Signed-off-by: Parth Patel <p.patel81@yahoo.com> * test: unit test for the APIVersions check Signed-off-by: Parth Patel <p.patel81@yahoo.com> --------- Signed-off-by: Parth Patel <p.patel81@yahoo.com>	2023-09-08 22:41:41 +02:00
Joan Miquel Luque	bb26bf8ff3	Improve Hashicorp Vault PushSecret documentation (#2679 ) Signed-off-by: Joan Miquel Luque Oliver <joan.luque@dynatrace.com>	2023-09-08 00:30:15 +02:00
Alexander Kurata	e85b76f1d3	Convert IBM auth struct fields to pointers (#2669 ) * Convert SecretStore IBMAuth contents to struct pointers Signed-off-by: akurata <akurata100@gmail.com> * update ibm provider logic + tests Signed-off-by: akurata <akurata100@gmail.com> * refactor ibm provider validatestore to reduce complexity Signed-off-by: akurata <akurata100@gmail.com> * update ibm provider container auth profile check to return an error for a missing profile def Signed-off-by: akurata <akurata100@gmail.com> --------- Signed-off-by: akurata <akurata100@gmail.com> Co-authored-by: Alex Kurata <alexander.kurata@ibm.com>	2023-09-05 12:03:49 +02:00
Florent Viel	012ece2b15	Refacto scaleway provider (#2667 ) * replace API calls by ListSecrets Scalewaw will deprecate soon the Secret Manager endpoints ByName, the idea is to use the ListSecrets instead and to filter by name Signed-off-by: Florent Viel <fviel@scaleway.com> allow to filter by name for the fake scw secret api Signed-off-by: Florent Viel <fviel@scaleway.com> * improve scaleway fake api Signed-off-by: Florent Viel <fviel@scaleway.com> the fake implementation of the ListSecrets for the Scaleway API was too naive and returns too many secrets based on the input filters * scaleway: fix calls to the ListSecrets endpoint Signed-off-by: Florent Viel <fviel@scaleway.com> * scaleway: fix lint issues Signed-off-by: Florent Viel <fviel@scaleway.com> --------- Signed-off-by: Florent Viel <fviel@scaleway.com>	2023-09-04 20:01:38 +02:00
eso-service-account-app[bot]	0e983110c3	update dependencies (#2675 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-04 12:51:39 +02:00
Moritz Johner	c8775e8d3c	chore: bump EKS e2e test version (#2666 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-08-31 07:49:45 +09:00
Moritz Johner	2dcc360941	chore: bump kubernetes support version (#2659 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-08-29 00:17:10 +02:00
Shuhei Kitagawa	da85f80d97	Support PushSecret metadata (#2600 ) * Support PushSecret metadata Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Refactor GCP PushSecret Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-08-28 23:50:21 +02:00

1 2 3 4 5 ...

2500 commits