mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-15 17:51:01 +00:00
Code Activity
1120 commits 135 branches 173 tags 201 MiB
Commit graph

138 commits

Author SHA1 Message Date
Gustavo Carvalho
ff62a47d47 Bumping chart version to v0.4.2 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-13 09:16:41 -03:00
paul-the-alien[bot]
027f28ec97
Merge pull request #700 from EladGabay/elad/oci-secret-by-name 
oracle vault: Use instance principal if auth is empty
 2022-02-10 10:34:40 +00:00
Alexander Huck
2bbc033699
fix: add port name to deployment (#697) 
Co-authored-by: Alexander Huck <alexander.huck@inovex.de>
Co-authored-by: Alberto Llamas <albertollamaso@gmail.com>
 2022-02-07 20:20:01 +01:00
Elad Gabay
fe416890b1 oracle vault: Use instance principal if auth is empty 
Currently the oracle vault's secretstore uses a specific user credentials.
This commit introduce a new way to access the vault, using the instance principal.

All user's details moved to "auth" section in the OracleProvider which now is optional.
If "auth" is empty, by default, we use the instance principal, otherwise if specified user's auth details, we use them.

In addition:
- Fixed the fingerprint secret reference which until now used the privatekey secret instead of its reference.
- Bump OCI SDK version.
 2022-02-07 18:38:10 +02:00
Lucas Severo Alves
6630ab7494
Initial draft of reporter (#466) 
* Initial draft of reporter

* Test out reporter in AWS provider

* trying out different events approach

* feat: implement store reconciler and events

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: add validate() method to provider interface

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: use static requeue interval in store ctrl

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Co-authored-by: Mircea Cosbuc <mircea.cosbuc@container-solutions.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-07 11:42:18 +01:00
Lucas Severo Alves
4c5f9ae763 chore: bump version 0.4.1 
Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>
 2022-02-02 20:22:10 +01:00
Docs
9fbb6d22b0 Making reviewable 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-02 15:31:56 -03:00
Lucas Severo Alves
0e19d00c8d chore: bump chart to v0.4.0 2022-02-02 17:56:22 +01:00
paul-the-alien[bot]
5060619826
Merge pull request #614 from external-secrets/fix/docs 
Improves Documentation. Removes controller reference
 2022-02-01 19:38:32 +00:00
Moritz Johner
fe1cb8bc69 feat(provider): implement fake provider 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-01 11:18:43 +01:00
Gustavo Carvalho
d694bb4b9b Added make reviewable 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 09:39:37 -03:00
Gustavo Carvalho
b95d82dc39 Fixing trailing whitespace 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 09:24:00 -03:00
Gustavo Carvalho
7df28de2d8 Merge branch 'main' into fix/docs 2022-01-25 09:15:07 -03:00
Gustavo Carvalho
33fb42df53 Changed Dev guide 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-01-25 08:21:09 -03:00
Marc Billow
0753da1cbd Support for eventual consistency in Vault Enterprise 2022-01-19 16:25:01 -06:00
Moritz Johner
40ff991e17 fix: remove support for v1beta1 crds 2022-01-17 21:44:33 +01:00
Lucas Severo Alves
16948ed572
Merge pull request #596 from EladGabay/elad/oci-secret-by-name 
OCI Vault: Get secret by name from a specific Vault
 2022-01-16 17:20:46 +00:00
Elad Gabay
f50438353e oracle: Add Vault OCID to provider 2022-01-16 12:05:58 +02:00
Elad Gabay
137ce182c1 oracle: Fix provider fields docs 2022-01-16 12:02:56 +02:00
paul-the-alien[bot]
4c6b6a1e84
Merge pull request #525 from HanseMerkur/vault_optional_path 
Optional path for Vault SecretStore
 2022-01-14 19:33:29 +00:00
paul-the-alien[bot]
44d4cf061b
Merge pull request #559 from willemm/feat/generic_webhook 
Add generic webhook provider
 2022-01-11 15:50:05 +00:00
paul-the-alien[bot]
be78d56708
Merge pull request #567 from brentspector/feat/ldap-auth-path 
Add Path Parameter to LDAP and JWT/OIDC Hashicorp Vault Auth
 2022-01-10 13:11:10 +00:00
Lennart Weller
f7f521317e add generated files 2022-01-10 10:12:17 +01:00
Lucas Severo Alves
395fee02b3 chore: bump chart to 0.3.11 2022-01-06 15:08:43 +01:00
Brent Spector
26f9be4fb1 add path to jwt vault auth 2022-01-05 15:22:00 -08:00
Brent Spector
561bd3ae56 Add support for mount path in ldap auth 2022-01-05 14:54:50 -08:00
Willem Monsuwe
d04508e974 Added generic webhook provider 
This provider allows a secretstore with a generic url (templated)
which will be called with a defined method, headers (templated)
and optional body (also templated)
The response can be parsed out with a jsonPath expression
 2021-12-29 10:53:29 +01:00
Lucas Severo Alves
fc4eedfd63
Merge pull request #427 from jack-evans/concurrency 
add concurrent flag to allow more reconciles at the same time
 2021-12-27 11:10:45 +01:00
Jack Evans
5e74da3342
add specific concurrent option to helm chart 2021-12-17 15:37:38 +00:00
Moritz Johner
80fac0f697 feat: add gcp workload identity via SA 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2021-12-17 12:20:12 +01:00
paul-the-alien[bot]
78d046b712
Merge pull request #530 from ADustyOldMuffin/add-docs-and-fix-ca-vault 
Add documentation for CAProvider namespace and fix issue with SecretStore
 2021-12-16 19:44:24 +00:00
Vladimir Fedin
c351efcc15
Add ability provide CA for Yandex' Lockbox provider (#487) 
* Add ability provide CA for Yandex' Lockbox provider

* Add tests for getting CA from secrets at Lockbox provider

* fixup! Add tests for getting CA from secrets at Lockbox provider

Co-authored-by: Vladimir Fedin <vladimirfedin@yandex-team.ru>
 2021-12-16 20:16:23 +01:00
beastob
67991140e9 Add annotations to Deployment 
Signed-off-by: beastob <beastob.mark1@gmail.com>
 2021-12-15 23:46:33 +08:00
Moritz Johner
57191a4726 chore: bump chart 0.3.10 2021-12-15 10:24:52 +01:00
Daniel Hix
d53b3df7f8 Remove namespace requirement for secret store and require for cluster secret store 2021-12-13 17:07:32 -06:00
Daniel Hix
082cee230f Merge branch 'main' into ibm-enable-retries 2021-12-13 13:27:57 -06:00
paul-the-alien[bot]
1e9ba0ceb5
Merge pull request #514 from vazul/azure_managed_identity 
Supporting Managed Identity authentication for Azure Keyvault
 2021-12-07 08:45:26 +00:00
Lucas Severo Alves
81eaee7ce0 chore: bump chart 0.3.9 2021-12-06 14:50:30 +01:00
Laszlo Varadi
a976e32831 Supporting Managed Identity authentication for Azure Keyvault 2021-12-06 10:26:34 +01:00
Lucas Severo Alves
2c07e7d49a
Merge pull request #475 from renanaAkeyless/main 
Add Akeyless provider
 2021-11-16 13:09:20 +01:00
Lucas Severo Alves
f7a27b71ff Bump 0.3.8 readme 2021-11-12 16:44:31 +01:00
Lucas Severo Alves
ae943b580d Bump 0.3.8 2021-11-12 16:42:54 +01:00
renanaAkeyless
0348bbb59d lint 2021-11-08 13:27:12 +02:00
renanaAkeyless
234f3281ab deplay 2021-11-07 16:30:20 +02:00
renanaAkeyless
4a5877d926 Adde Akeyless 2021-11-07 16:18:40 +02:00
Gustavo Fernandes de Carvalho
9500f8e4b2 Bumping version to 0.3.7 
Signed-off-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com>
 2021-10-27 16:12:08 -03:00
Daniel Hix
99f49feee4 Add retry settings to secret store CRD 2021-10-20 18:50:01 -05:00
paul-the-alien[bot]
d9f30a3350
Merge pull request #414 from ADustyOldMuffin/vault-ca-provider 
Add the ability to specify cert for Vault from K8s Secrets
 2021-10-20 21:43:37 +00:00
Lucas Severo Alves
c00afc9ff7
Merge pull request #329 from FGA-GCES/feat/immutable-secrets 
Add immutable secrets
 2021-10-12 18:20:23 +02:00
Daniel Hix
b3a44fdbd0
Merge branch 'external-secrets:main' into vault-ca-provider 2021-10-06 10:38:59 -05:00