1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Commit graph

123 commits

Author SHA1 Message Date
jabray5
d45469acc7 operator functional and retrieves secrets from gitlab 2021-08-25 16:47:05 +02:00
zamysel
ec7d3a3517 Add support for Yandex Lockbox 2021-08-25 11:25:17 +03:00
zamysel
0dc8842b85 Merge branch 'main' into lockbox 2021-08-25 11:23:15 +03:00
Lucas Severo Alves
0f5f9bcf84 chore: bump chart 2021-08-24 19:54:44 +02:00
paul-the-alien[bot]
52e3e80a16
Merge pull request #339 from mouhsen-ibrahim/add-workload-identity-support
Add support for Google Cloud Identity
2021-08-24 17:00:42 +00:00
Lucas Severo Alves
7fbbb37b59
Merge pull request #320 from spirosoik/feat/iss-289
Add the ability of ESO to reconcile only in scoped namespace
2021-08-24 18:49:50 +02:00
Mouhsen Ibrahim
03f3622c2c make auth key for GCPSM provider optional 2021-08-24 14:22:06 +02:00
Mouhsen Ibrahim
fa7cc50433 format crds 2021-08-24 08:50:51 +02:00
paul-the-alien[bot]
9c28ed0aae
Merge pull request #338 from kolorful/main
Allow setting priorityClassName
2021-08-23 21:02:12 +00:00
Kewei Ma
855e63ae45
Allow setting priorityClassName 2021-08-23 15:38:52 -05:00
Mouhsen Ibrahim
403a47c116 Add support for Google Cloud Identity
If the name of the service account secret is kept
empty, this means we want to use Google Cloud Identity
to authenticate against the GCP project
2021-08-23 22:28:24 +02:00
Anthony Anderson
1faf3aaf99 add namespace to deployment and service account templates 2021-08-23 09:46:39 -04:00
zamysel
c7229199f3 Add support for Yandex Lockbox: custom API endpoint 2021-08-20 16:16:35 +03:00
Spiros Economakis
5e3b2a0ad0
Add the ability of ESO to reconcile only in scoped namespace
By default ESO reconciles `Kind=ExternalSecret` across every namespace
in a k8s cluster. With the new flag `--nameespace` we can scope the
reconciling only to the provided namespace.

Ticket: #289
2021-08-20 14:29:44 +03:00
zamysel
42a3e2c457 Add support for Yandex Lockbox: docs 2021-08-19 17:33:36 +03:00
Arthur
c8315865a1 add immutable field on ExternalSecretTarget and on v1.Secret creation
Co-authored-by: mouhsen-ibrahim <mouhsen.ibrahim@gmail.com>
2021-08-18 19:55:10 -03:00
zamysel
6b2f852eb6 Add support for Yandex Lockbox: custom API endpoint 2021-08-17 20:13:13 +03:00
zamysel
7017935888 Add support for Yandex Lockbox 2021-08-12 20:05:02 +03:00
HenningE
328cf881b8
feat: add status printcolumn to ES CRD (#318) 2021-08-10 17:10:56 +02:00
Moritz Johner
b14ef0281a chore(helm): bump 0.3.3 2021-08-07 23:59:46 +02:00
paul-the-alien[bot]
e65658d543
Merge pull request #265 from ricardoptcosta/mtls-auth
feat: adding Vault TLS client authentication
2021-07-30 14:20:42 +00:00
Moritz Johner
2f61ee2d7e chore: bump helm chart 2021-07-29 09:21:25 +02:00
Andrew
45ef86e8db
unable to patch secret. is forbidden 2021-07-28 14:50:29 -07:00
Moritz Johner
c658e42967 chore: bump helm 2021-07-28 17:03:10 +02:00
ric
2ab70cc510 Merge branch 'main' into mtls-auth 2021-07-26 09:43:56 +01:00
paul-the-alien[bot]
bd6e868474
Merge pull request #279 from zeonin/main
Fix Openshift 4.7 issues
2021-07-25 13:01:17 +00:00
Moritz Johner
52f24f2c31 chore: bump helm 2021-07-25 14:16:40 +02:00
Lawrence Brogan
3a4dfadb68 Fix Openshift 4.7 issues
Add `externalsecrets/finalizers` to the controller ClusterRole.

Loop through all ServiceAccount secrets for the token before failing
unstead of solely checking the first one.
2021-07-23 11:31:16 -06:00
ric
44ef7756ef refactoring to implement changes suggested in pull request 265 ,namely, 1) fetch client certificate and key as tls k8s secrets and 2) pass them directly to TLSClientConfig avoiding storing in disk 2021-07-21 22:30:49 +01:00
ric
4221c1b151 remove cacert from client Authentication. It's already in CABundle. 2021-07-20 14:44:58 +01:00
Moritz Johner
466938522c feat(aws): add jwt authentication 2021-07-17 20:39:24 +02:00
ric
0edf4154da merge with main 2021-07-14 14:26:04 +01:00
ric
7d2d83d695 update crds to inclue client and ca certs but not client private key 2021-07-14 12:59:04 +01:00
ric
73be01d492 most work done - missing unit tests and path do certs 2021-07-13 21:44:10 +01:00
paul-the-alien[bot]
c70e83c5de
Merge pull request #259 from external-secrets/feature/creation-policy
feat(ctrl): implement creationPolicy=Merge/None
2021-07-13 15:44:29 +00:00
Moritz Johner
59a851c941 feat(ctrl): implement creationPolicy=Merge/None 2021-07-12 18:45:44 +02:00
Moritz Johner
239f1c835b chore: bump helm 2021-07-10 21:52:17 +02:00
ric
6170b2ceb8 bump to version 0.2.2 2021-07-08 22:31:06 +01:00
Andrew
d1af4756d6
Add configmap rules for templateFrom
https://github.com/external-secrets/external-secrets/issues/179
2021-07-06 13:31:24 -07:00
ric
fd53e76247 feat: ibm provider implementation
Co-authored-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com>
Co-authored-by: Lucas Severo <lucassalves65@gmail.com>
Co-authored-by: Joey Brayshaw <joeybrayshaw@gmail.com>
Co-authored-by: Elsa Chelala <elsachelala@gmail.com>
Co-authored-by: choilmto <choilmto@gmail.com>
Co-authored-by: Adrian Mouat <adrian.mouat@gmail.com>
Co-authored-by: ricardoptcosta <ricardoptcosta@gmail.com>
Co-authored-by: Gabi Beyer <Gabrielle.Beyer@container-solutions.com>
Co-authored-by: Tomasz Tarczynski <ttarczynski@users.noreply.github.com>
Co-authored-by: Mircea Cosbuc <mircea.cosbuc@container-solutions.com>
2021-07-02 16:00:05 +02:00
paul-the-alien[bot]
04219ded4e
Merge pull request #222 from external-secrets/feat/template-from
implement templateFrom
2021-06-29 13:43:48 +00:00
Moritz Johner
73ca014cfb feat: implement templateFrom 2021-06-28 21:29:09 +02:00
paul-the-alien[bot]
1704c15e92
Merge pull request #219 from external-secrets/docs/store
chore(docs): document es update behavior
2021-06-27 15:04:37 +00:00
Lucas Severo Alves
641d224293 Bump to 0.2.1 version 2021-06-25 23:58:23 +02:00
Moritz Johner
fb726dfb17 chore(docs): document es update behavior 2021-06-25 22:48:54 +02:00
Moritz Johner
5ac02ed2c4 feat: add synced resource version status 2021-06-25 21:23:29 +02:00
Lucas Severo Alves
7a16d0bcf8 Release 0.2.0 2021-06-09 18:28:00 +02:00
Ahmed MUSTAFA
07254798ee Avoid using Env variables for authorization , fix lint errors 2021-06-07 10:54:50 +02:00
Nicolas Courbet
0e49b84f6d Rebase on master, and rework unit tests 2021-06-02 17:14:58 +02:00
Kellin McAvoy
f0efb59f94 ci: add helm.docs target to helm generate 2021-05-27 13:36:08 -05:00
Gabi
53e21034d5 Fix merge conflicts to add GCP secret manager 2021-05-27 11:43:34 +02:00
Lucas Severo Alves
98dddba1a7 bumping version for release 2021-05-27 11:40:42 +02:00
Moritz Johner
e5d6e30d00 fix: template data should be string, fix update mechanics 2021-05-20 08:46:22 +02:00
Lucas Severo Alves
24fda3ba71
chore: Bump chart and app versions 2021-05-18 20:04:33 +02:00
paul-the-alien[bot]
4a1d43f1ed
Merge pull request #152 from xxxbobrxxx/vault-ldap-auth-method
Vault ldap and jwt/oidc auth methods
2021-05-18 17:45:42 +00:00
KeisukeYamashita
1e60bedb6f
fix: remove arg of deployment when no arg specified
Signed-off-by: KeisukeYamashita <19yamashita15@gmail.com>
2021-05-17 01:11:43 +09:00
xxxbobrxxx
f112d45aef #150 Fix json fields names 2021-05-14 12:39:41 +03:00
xxxbobrxxx
c900c8deb5 #150 Fix JWT bugs 2021-05-14 09:40:13 +03:00
xxxbobrxxx
10218d1ef7 #150 Small corrections, generate docs 2021-05-13 19:32:06 +03:00
xxxbobrxxx
e4d8fb4046 #150 Implement LDAP and JWT/OIDC auth methods 2021-05-13 19:19:57 +03:00
xxxbobrxxx
704e7a785b #150 Define data model for the Vault LDAP auth method 2021-05-13 18:02:04 +03:00
Kellin McAvoy
bac338ed74 fix: prerelease versions are valid 2021-05-12 11:05:54 -05:00
Moritz Johner
291dd0569f fix: appVersion needs prefix 2021-05-05 21:11:29 +02:00
Cameron McAvoy
a9c2668e9e
Update rbac.yaml to give the controller "create" permission on leases
The current helm chart does not grant the controller the appropriate "create" permission on leases for leader election to work.
2021-05-03 10:51:43 -05:00
Jeremy Bopp
5afa7795af Add aggregated ClusterRoles for view and edit permissions of custom resources 2021-04-30 19:39:16 -05:00
Moritz Johner
aaa6ad0ca8 fix: make vault version optional w/ defaults
fixes #117
2021-04-28 18:46:16 +02:00
Moritz Johner
8c8064e0e1
Draft: feat: implement template (#69)
* feat: implement template
2021-04-23 08:22:23 +02:00
Cameron McAvoy
f2d77e0324 Add service account selector to vault provider to look up the sa token 2021-04-19 13:26:29 -05:00
Moritz Johner
2f9f9dcf8f fix: regenerate manifests 2021-04-14 22:43:24 +02:00
Kellin
400a1f6a5a
Merge pull request #92 from mcavoyk/cleanup-kustomize
Cleanup and remove kustomize manifests in favor of Helm chart
2021-04-14 11:19:37 -04:00
Kellin McAvoy
6318811108 Cleanup and remove kustomize manifests in favor of Helm chart 2021-04-08 13:56:11 -05:00
Cameron McAvoy
52a2522d9f Add RBAC for leader election in the helm chart 2021-04-07 11:00:43 -05:00
Kellin McAvoy
a7a074dd02 feat: initial helm chart 2020-12-22 15:27:16 -05:00