external-secrets

mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00

Author	SHA1	Message	Date
Zaza	972f227002	Update bitwarden-secrets-manager.md (#3710 ) Fixed typos in the bitwarden provider docs Signed-off-by: Zaza <thomas.kyle6@gmail.com>	2024-07-22 11:33:00 +02:00
Mike Tougeron	7f71b4717a	Update docs for namespaceSelectors usage and namespaceSelector deprecation (#3695 ) Signed-off-by: Mike Tougeron <tougeron@adobe.com>	2024-07-21 16:37:48 -03:00
Ali Nadir	fb020db6de	Added 2 articles I wrote on AWS secrets injection and ESO templating (#3707 ) Signed-off-by: Ali Nadir <56518209+alinadir44@users.noreply.github.com>	2024-07-21 16:36:56 -03:00
abhinav1708	bdd0c7ec9a	support for adding headers in vault provider (#3677 ) * support for vault headers Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> * changes in crds bases for headers support Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> * adding autogenerated files Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> * removing extra--- Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> * adding headers before x-vault-Inconsistent Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> * changing for lint pass Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com> --------- Signed-off-by: Abhinav Garg 10033523 <abhinav1708@gmail.com>	2024-07-15 11:27:06 +02:00
Arthur Kepler	14e6d78d25	namespacesRegexdocs: Fix `namespaceRegexes` in full-cluster-secret-store.yaml (#3681 ) This fixes a typo on https://external-secrets.io/v0.9.20/api/clustersecretstore/, in which the property is incorrectly called `namespacesRegex` Signed-off-by: Arthur Kepler <610274+excalq@users.noreply.github.com>	2024-07-11 07:09:30 -03:00
Jefferson Machado	03a2ee6ce0	Commenting secrets manifest from hashicorp vault integration (#3680 ) Signed-off-by: Jefferson Machado <35748721+jeffmachado@users.noreply.github.com>	2024-07-11 07:08:33 -03:00
Bill Hamilton	1876ff88d7	Add support for Delinea Secret Server (#3468 ) * implements secretserver Signed-off-by: Bill Hamilton <bill.hamilton@delinea.com> * bump to align e2e Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * bump Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: Bill Hamilton <bill.hamilton@delinea.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2024-07-10 14:32:17 -03:00
shazib	4e444ce150	docs: updated k8s support for ESO v0.9 (#3659 )	2024-07-06 07:30:42 +03:00
Gustavo Fernandes de Carvalho	4aeba81f07	bump docs with e2e commands (#3648 )	2024-07-02 07:09:35 -03:00
kaedwen	48cccaeded	add AuthRef to kubernetes provider fixes #3627 (#3628 ) * add AuthRef to kubernetes provider fixes #3627 Signed-off-by: kaedwen <kaedwen@heinrich.blue> * run make reviewable Signed-off-by: kaedwen <kaedwen@heinrich.blue> * fix validation for given authRef Signed-off-by: kaedwen <kaedwen@heinrich.blue> * refactor kubernetes provider auth Signed-off-by: kaedwen <kaedwen@heinrich.blue> * satisfy linter Signed-off-by: kaedwen <kaedwen@heinrich.blue> * add URL for kubernetes provider tests Signed-off-by: kaedwen <kaedwen@heinrich.blue> --------- Signed-off-by: kaedwen <kaedwen@heinrich.blue>	2024-07-01 23:31:10 +02:00
Sverre Boschman	00cf351548	docs: fix dataFrom.find in ExternalSecret api example (#3633 ) Signed-off-by: Sverre Boschman <1142569+sboschman@users.noreply.github.com>	2024-06-29 19:21:16 +02:00
Gergely Brautigam	095537e6ad	feat: add bitwarden secret manager support (#3603 )	2024-06-28 06:04:25 +02:00
Nathan Ellenfield	907e8ebc82	Fix ACR External Secret example (#3626 ) * Fix ACR External Secret example Signed-off-by: Nathan Ellenfield <nathan.ellenfield@allscripts.com> * Fix typos in acr generator docs Signed-off-by: Nathan Ellenfield <nathan.ellenfield@allscripts.com> --------- Signed-off-by: Nathan Ellenfield <nathan.ellenfield@allscripts.com>	2024-06-26 19:50:24 +02:00
Idan Adar	e13e09413e	Fix typo privatKey in multiple files (#3578 ) * Update generators.external-secrets.io_githubaccesstokens.yaml Fixes https://github.com/external-secrets/external-secrets/issues/3556 Signed-off-by: Idan Adar <iadar@il.ibm.com> * Update generator_github.go Signed-off-by: Idan Adar <iadar@il.ibm.com> * Update github.go Signed-off-by: Idan Adar <iadar@il.ibm.com> * Update generator-github.yaml Signed-off-by: Idan Adar <iadar@il.ibm.com> * Update github_test.go Signed-off-by: Idan Adar <iadar@il.ibm.com> * fix: rename property Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Idan Adar <iadar@il.ibm.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2024-06-17 11:12:03 +02:00
Geoffrey MUSELLI	f74e08546c	Support glob for namespaces condition in ClusterSecretStore (#2920 ) * feat(ClusterSecretStore): Support glob for conditions.namespaces Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): Fix diff Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): Fix code smell Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): First code review Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): Second code review Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): Generate Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * feat(ClusterSecretStore): Fix Sonar method complexity Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> * addressed comments Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * renamed namedspacesregexes because it sounded funny Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> --------- Signed-off-by: gmuselli <geoffrey.muselli@gmail.com> Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-06-17 08:36:05 +02:00
smcavallo	d29c001d37	Add device42 provider (#3571 )	2024-06-14 06:04:19 +02:00
Victor Santos	dd8c004f47	feat: add support to set Type for AWS parameter store (#3576 ) Signed-off-by: Victor Santos <vsantos.py@gmail.com>	2024-06-12 10:24:52 +02:00
Akhil Mohan	ace1ff595f	Infisical provider (#3477 ) * feat: added crds for infisical provider Signed-off-by: = <akhilmhdh@gmail.com> * feat: implemented infisical provider logic Signed-off-by: = <akhilmhdh@gmail.com> * fix: resolved broken doc building due to vault doc error Signed-off-by: = <akhilmhdh@gmail.com> * docs: added doc for infisical provider Signed-off-by: = <akhilmhdh@gmail.com> * docs: fixed a warning in mkdocs on link Signed-off-by: = <akhilmhdh@gmail.com> * feat: resolved all lint issues Signed-off-by: = <akhilmhdh@gmail.com> * doc: removed k8s auth release banner from infisical doc Signed-off-by: = <akhilmhdh@gmail.com> * feat: added support for property to infisical provider Signed-off-by: = <akhilmhdh@gmail.com> * feat: removed auth type and made implicit ordering of authentication based on feedback Signed-off-by: = <akhilmhdh@gmail.com> * feat: support for referent authentication Signed-off-by: = <akhilmhdh@gmail.com> * feat: added error for tag not supported in find Signed-off-by: = <akhilmhdh@gmail.com> * fix: resolved failing build Signed-off-by: = <akhilmhdh@gmail.com> * feat: updated doc and added stability matrix for infisical Signed-off-by: = <akhilmhdh@gmail.com> * feat: switched to less error prone use and revoke token strategy and added validate interface logic Signed-off-by: = <akhilmhdh@gmail.com> * feat: code lint issue fixes Signed-off-by: = <akhilmhdh@gmail.com> * feat: resolved review comments for infisical client Signed-off-by: = <akhilmhdh@gmail.com> * feat: improved test cases and resolved sonar issues Signed-off-by: = <akhilmhdh@gmail.com> * feat: resolved sonar suggestions Signed-off-by: = <akhilmhdh@gmail.com> * feat: resolved sonar suggestions for test const ids Signed-off-by: = <akhilmhdh@gmail.com> * feat: store changes to assertError Signed-off-by: = <akhilmhdh@gmail.com> --------- Signed-off-by: = <akhilmhdh@gmail.com>	2024-06-11 22:27:31 +02:00
AvivGuiser	c365cb4956	add log.level and log.encoding to all components (#3558 ) * add log.level and log.encoding to all components Signed-off-by: Aviv Guiser <avivguiser@gmail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2024-06-08 15:37:01 +02:00
Gergely Brautigam	94c9a33a11	feat: add location to GCP push secret (#3502 ) Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-06-07 09:46:29 +02:00
Anders Swanson	8fb0fec6ca	Oracle Vault Provider Documentation (#3551 ) * Oracle Vault Provider Documentation Signed-off-by: anders-swanson <anders.swanson@oracle.com> * Oracle Vault Provider Documentation Signed-off-by: anders-swanson <anders.swanson@oracle.com> --------- Signed-off-by: anders-swanson <anders.swanson@oracle.com>	2024-06-06 21:20:45 +02:00
Andreas Lindhé	d7c0b55880	Fix typo: temaplate --> template (#3554 ) Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>	2024-06-06 00:31:38 +03:00
Antoine Colombier	ef4fa28e0e	doc(BitWarden): extends the liveness timeout (#3542 ) The liveness command perform a vault re-sync which usually takes a few second to perform. This commit replace the current value which is too low and lead to timeout and pod termination. Signed-off-by: Antoine Colombier <7086688+acolombier@users.noreply.github.com>	2024-06-02 15:53:25 +02:00
Shuhei Kitagawa	b156e23743	Raise error when unknown key specified in template (#3480 ) * Raise error when unknown key specified in template Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Update the template docs to clarify the new behavior with non-existing keys Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2024-05-17 09:57:11 -03:00
Luis Schweigard	0abb3e9cc4	Add support for Authentication against Azure Key Vault using Client Certificate (#3469 ) * Implementation of Certificate Based Authz against Azure Key Vault Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> * Add tests for new Azure certificate auth functionality Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> * Add documentation for Azure Cert based Auth Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> * Generate spec.md Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> * Add changes from code review Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> * Fix naming in test error case Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com> --------- Signed-off-by: Luis Schweigard <luis.schweigard@gmail.com>	2024-05-13 08:40:50 -03:00
Bob Du	4b8b8788bf	Update getting-started.md (#3476 ) Signed-off-by: Bob Du <i@bobdu.cc>	2024-05-11 11:03:08 -03:00
Michael Serchenia	34444280bb	GitHub token gen doc (#3463 ) * added tempalte example for github token gen + doc Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * added tempalte example for github token gen + doc Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * build doc success, added github with template example Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> --------- Signed-off-by: Mike Serchenia <michael_serchenia@epam.com>	2024-05-10 05:00:57 -03:00
Saverio Proto	bddca97cf2	Update getting-started.md (#3464 ) * Update getting-started.md Bump crds tag from v0.9.11 to v0.9.17 Signed-off-by: Saverio Proto <zioproto@gmail.com> * Update docs/introduction/getting-started.md Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Saverio Proto <zioproto@gmail.com> --------- Signed-off-by: Saverio Proto <zioproto@gmail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2024-05-07 17:05:24 -03:00
Parth Patel	6d08e679be	Fixed docs nav bar and a couple of broken links (#3445 ) Signed-off-by: Parth Patel <p.patel81@yahoo.com>	2024-05-05 07:47:47 -03:00
Steven I	297e55d3af	Improve bitwarden example (#3435 ) * Add bitwarden-attachment example Signed-off-by: Steven I. <commits@imsteven.xyz> * Fix nav list Signed-off-by: Steven I. <commits@imsteven.xyz> --------- Signed-off-by: Steven I. <commits@imsteven.xyz>	2024-04-30 15:04:14 -03:00
Tyki6	e32233f401	Update common-k8s-secret-types.md to fix get secret jsonpath (#3434 ) Signed-off-by: Tyki6 <57527739+tyki6@users.noreply.github.com>	2024-04-30 14:15:10 -03:00
Shuhei Kitagawa	9d17e34942	Refactor the SecretStore client manager (#3419 ) * Refactor the SecretStore client manager Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Fix ineffectual assignment to err Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Update docs Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2024-04-29 05:15:21 -03:00
Shlomo Zalman Heigh	02c6f625bd	Add Conjur Support for FindByName, FindByTag (#3364 )	2024-04-28 19:01:00 +02:00
Shuhei Kitagawa	43a7a16baf	Update Go and golangci-lint version (#3396 ) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2024-04-25 06:36:11 -03:00
Parth Patel	f893a246e7	Fix Azure Container Registry Generator invalid YAML (#3414 ) Signed-off-by: Parth Patel <p.patel81@yahoo.com>	2024-04-25 06:11:29 -03:00
Katsuya Kawabe	cf15c9ba73	Fix typo in webhook.md (#3388 )	2024-04-19 14:39:14 +03:00
Mykhailo Zahlada	47cc50a9ed	Workloadidentity clientid from secret ref (#3367 ) * updates documentation: extends workloadIdentity auth configuration Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> * adds and updates tests Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> * extends provider configuration to accept clientId and tenantId as auth SecretRef Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> * updates service account example Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> * updates docs Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> --------- Signed-off-by: Mykhailo Zahlada <myzahlad@microsoft.com> Co-authored-by: Mykhailo Zahlada <myzahlad@microsoft.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2024-04-18 05:09:53 -03:00
Thorben Below	432c6bf9ab	Feat: Add Passbolt Provider (#3334 ) * add passbolt provider Signed-off-by: Thorben Below <56894536+thorbenbelow@users.noreply.github.com> * Fix: return err for unimplemented methods Signed-off-by: Thorben Below <56894536+thorbenbelow@users.noreply.github.com> --------- Signed-off-by: Thorben Below <56894536+thorbenbelow@users.noreply.github.com>	2024-04-18 09:58:25 +02:00
David Recuenco	7602995a1c	Extract support for SDKMS provider (#3237 ) * ADD extract support for sdkms provider Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * Apply suggestions from code review Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: David Recuenco <david.recuencogadea+github@gmail.com> --------- Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> Signed-off-by: David Recuenco <david.recuencogadea+github@gmail.com> Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-04-09 08:20:37 +02:00
Shuhei Kitagawa	120fedf841	Add NamespaceSelectors field to ClusterExternalSecret (#3268 ) https://github.com/external-secrets/external-secrets/issues/3257 Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2024-04-05 08:35:08 +09:00
Rodrigo Fior Kuntzer	9ff2354213	fix: introducing support for conversion strategy for PushSecret. (#3292 ) * fix: introducing support for conversion strategy for PushSecret. Signed-off-by: Rodrigo Fior Kuntzer <rodrigo@miro.com> * fix: unit tests code quality. Signed-off-by: Rodrigo Fior Kuntzer <rodrigo@miro.com> --------- Signed-off-by: Rodrigo Fior Kuntzer <rodrigo@miro.com>	2024-04-04 16:31:28 +02:00
Mohit Bishesh	ac6d53da54	Update all-keys-one-secret.md (#3320 ) * Update all-keys-one-secret.md Signed-off-by: Mohit Bishesh mohitbishesh7@gmail.com Signed-off-by: Mohit Bishesh <74617917+MohitBishesh@users.noreply.github.com> Signed-off-by: Mohit Bishesh <mohitbishesh7@gmail.com> * Updating the grammar and surname Signed-off-by: Mohit Bishesh <mohitbishesh7@gmail.com> Signed-off-by: Mohit Bishesh <mohitbishesh7@gmail.com> --------- Signed-off-by: Mohit Bishesh <74617917+MohitBishesh@users.noreply.github.com> Signed-off-by: Mohit Bishesh <mohitbishesh7@gmail.com>	2024-04-04 08:10:57 +02:00
Michael Serchenia	84731616f4	GitHub provider (supersedes #3014 ) (#3115 ) * github provider signed, supersedes #3014 Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * tests pass, + crd + docs Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * fix sonarLint alert Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * refactoring, replace secretStore with generator Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * cosmetics + tst + lint pass Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * docs Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * clean-up + lint + test Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> * small refactor, fix issues left in comments Signed-off-by: Mike Serchenia <michael_serchenia@epam.com> --------- Signed-off-by: Mike Serchenia <michael_serchenia@epam.com>	2024-04-03 09:19:57 +02:00
Blair Drummond	731c0ed736	feat: add vault auth namespace option (#3157 ) * feat: add vault auth namespace option Signed-off-by: Blair Drummond <blaird@liatrio.com> * fix: appease the linter Signed-off-by: Blair Drummond <blaird@liatrio.com> * feat: add tests for auth namespace Signed-off-by: Blair Drummond <blaird@liatrio.com> * fix: add make reviewable output Signed-off-by: Blair Drummond <blaird@liatrio.com> --------- Signed-off-by: Blair Drummond <blaird@liatrio.com>	2024-03-27 07:23:34 +01:00
Engin Diri	e0b668db70	docs: Change default refreshInterval to 5m (#3283 ) Signed-off-by: Engin Diri <engin.diri@ediri.de>	2024-03-19 08:25:24 +09:00
Ben Skelker	47c0f6c759	Update the CyberArk Provider docs (#3261 ) * updates conjur provider doc Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * edits Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * more edits Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * more edits3 Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * even more edits Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * Update docs/provider/conjur.md Signed-off-by: Ben Skelker <54019610+benskelker@users.noreply.github.com> Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> * and more edits Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> --------- Signed-off-by: Ben Skelker <ben.skelker@cyberark.com> Signed-off-by: Ben Skelker <54019610+benskelker@users.noreply.github.com> Co-authored-by: Ben Skelker <ben.skelker@cyberark.com>	2024-03-16 09:51:46 +09:00
Burgs Del	f4050ca93f	adjust position of principalType (#3252 ) Signed-off-by: Hayden-Chang <shenshuoyouguang@outlook.com>	2024-03-13 08:43:26 +09:00
Sulfixx	e57e4b72ca	Integrate Passworddepot (#2799 ) * PLAT-1179 \| updated to beta1 Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Updating External Secrets fixes Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Fix to Passworddepots-crds-generation Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| apiextensionsv1 removal Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * Update apis/externalsecrets/v1beta1/secretstore_passworddeport_types.go Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: Sulfixx <135371229+Sulfixx@users.noreply.github.com> * Update apis/externalsecrets/v1beta1/secretstore_passworddeport_types.go Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: Sulfixx <135371229+Sulfixx@users.noreply.github.com> * Update apis/externalsecrets/v1beta1/secretstore_types.go Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: Sulfixx <135371229+Sulfixx@users.noreply.github.com> * PLAT-1179 \| Removed insecureverify and other fixes Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Fixed Linter and Sonar Issues Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Fixed Typo in Passworddepot_api.go Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Resolved go.mod Conflict Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Resolved go.mod conflict typo Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| admission.Warnings error fix Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Added nolint:bodyclose // linters bug Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Removed <= Head arrow from mkdocs.yml Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Added Make Check-Diff Changes Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Changed Error Package, Added Context, API Refactor Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Added const DoRequestError to reduce Codesmell Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Moved defer body close func into ReadAndUnmarshal Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Moved Status Check into ReadAndUnmarshal Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Removed Response.body from ReadAndUnmarshal Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * Update apis/externalsecrets/v1alpha1/secretstore_passworddepot_types.go Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: Sulfixx <135371229+Sulfixx@users.noreply.github.com> * PLAT-1179 \| Go mod tidy and Make generate Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Added empty SecretExists Method Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> * PLAT-1179 \| Renamed unsed ctx to _ Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> --------- Signed-off-by: Simon Becker <simon.becker@fastleansmart.com> Signed-off-by: Sulfixx <135371229+Sulfixx@users.noreply.github.com> Co-authored-by: Sören Rohweder <soeren.rohweder@fastleansmart.com> Co-authored-by: Simon Becker <simon.becker@fastleansmart.com> Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-03-12 13:33:08 +01:00
Gergely Brautigam	1d5177c8c7	feat: add secret push format to AWS secrets manager (#3189 )	2024-03-10 08:12:50 +01:00
Carolin Dohmen	29e5f71d8b	Add PushSecret UpdatePolicy (to replace PR #3100 ) (#3117 ) * Add PushSecret UpdatePolicy Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Adjust description of UpdatePolicy in PushSecret Spec Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Restructure PushSecret Status Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Refactor PushSecret controller method Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Add missing methods for new providers Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Add missing method to onboardbase client Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Add docs on PushSecret UpdatePolicy Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> * Use constant for error message Signed-off-by: Carolin Dohmen <carodohmen@gmail.com> --------- Signed-off-by: Carolin Dohmen <carodohmen@gmail.com>	2024-03-08 11:17:31 +01:00
Lucas Severo Alves	6edd8d38dd	docs: adds note to Lifecycle creation policy owner docs (#3235 ) Signed-off-by: Lucas Severo Alves <lseveroa@redhat.com> Co-authored-by: Lucas Pimentel Quintao <luk.2001@hotmail.com>	2024-03-06 10:30:20 +01:00
Shlomo Zalman Heigh	1d3209da59	Conjur E2E Tests for K8s JWT Authentication (#3217 ) Signed-off-by: Shlomo Heigh <shlomo.heigh@cyberark.com>	2024-03-01 17:36:19 +01:00
Gergely Brautigam	02f941b0a0	Revert "3012 - Probes for external-secrets (#3131 )" (#3213 ) This reverts commit `7eebfa027c`. Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-03-01 13:22:35 +01:00
Benjamin Walterscheid	7eebfa027c	3012 - Probes for external-secrets (#3131 ) * issue/3012 - introduced livenessProbe for core controller Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - updated livenessprobe for core controller Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - updated failing tests for controller_test.yaml Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - liveness probes with missing LivenessEndpointName and liveAddr flag Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - added missing live-addr core controller flag Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - removed obsolete align Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - added missing livenessProbe to README Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - updated docu for livenessProbes Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * issue/3012 - corrected description within values.yaml for check-diff Signed-off-by: Benjamin Walterscheid <git@berlking.io> * issue/3012 - minor README corrections Signed-off-by: Benjamin Walterscheid <git@berlking.io> * issue/3012 - updated snapshots for fortanix and onboardbase Signed-off-by: Benjamin Walterscheid <git@berlking.io> --------- Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> Signed-off-by: Benjamin Walterscheid <52604859+fdberlking@users.noreply.github.com> Signed-off-by: Benjamin Walterscheid <git@berlking.io> Co-authored-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com>	2024-03-01 08:57:45 +01:00
Aleem Isiaka	52f6655345	Onboardbase (#2697 ) * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Run decrypt with error Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Commit and Save Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Pull secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Integrate Onboardbase Into ESO Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Minor Fix And Cleanups Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Attend to review comments Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Install deps Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Improved docs Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Improved docs Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Update hack/crd.generate.sh Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Aleem Isiaka <30846935+limistah@users.noreply.github.com> * address issues with running the code Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * decrypt library into code Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * add docs to onboardbase provider Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * refactor duplicates Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Address Issues with tests Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Address issues with delete policy and json secrets Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Fix lint errors Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * error out when there is tags in the find field Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * execute delete request with the right data Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * ignore deletion policy Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * improve lint errors Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * remove cryptojs decrypt libs Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * Get secret value if property is set Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * run obb operator Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * 👌 IMPROVE: supports request deadline, esv1beta1 api updates Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * use same timeout Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * fix sonar cloud issues Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * fix sonar cloud issues Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * fix sonar cloud issues Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * fix failing test Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * add improve docs Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> * add improve docs Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> --------- Signed-off-by: Aleem Isiaka <aleemisiaka@gmail.com> Signed-off-by: Nasirudeen Olohundare <iamnasirudeen@gmail.com> Signed-off-by: Aleem Isiaka <30846935+limistah@users.noreply.github.com> Co-authored-by: Nasirudeen Olohundare <iamnasirudeen@gmail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2024-02-29 21:28:17 +01:00
Peter Stolz	0f6db5bd22	docs: Add logo and favicon to docs (#3206 ) Signed-off-by: Peter Stolz <50801264+PeterStolz@users.noreply.github.com>	2024-02-28 15:37:53 +01:00
David Recuenco	af38fc68d5	ADD sdkms base implementation (#3180 ) * ADD sdkms base implementation Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * FIX get secret object by name, unmarshalling error formatting Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * ADD suport for fortanix secret security objects Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * ADD more tests for opaque, secret, new client Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * FIX changes required by make reviewable Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * ADD missing provider registration Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> * FIX remove unused error string, add generated assets Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com> --------- Signed-off-by: Recuenco, David <david.recuenco@adidas-group.com>	2024-02-28 10:59:47 +01:00
Mathias Maes	74ed3facb7	Add PEM to PKCS12 template function (#3101 ) * Add PEM to PKCS12 template function Signed-off-by: Mathias Maes <mathias.maes@aloxy.io> * add docs Signed-off-by: Mathias Maes <mathias.maes@aloxy.io> * add pemToPkcs12Pass Signed-off-by: Mathias Maes <mathias.maes@aloxy.io> * fix formatting Signed-off-by: Mathias Maes <mathias.maes@aloxy.io> --------- Signed-off-by: Mathias Maes <mathias.maes@aloxy.io>	2024-02-27 09:36:53 +01:00
Maxence Boutet	57967813d1	fix(docs): Fix indentation in `vault-pushsecret.yaml` (#3156 ) Signed-off-by: Maxence Boutet <52334444+mboutet@users.noreply.github.com>	2024-02-17 07:06:02 -03:00
Gustavo Fernandes de Carvalho	1cf8f68276	Implements Webhook Generator (#3121 ) * adding webhook generators Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * bumping bundle Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * linting Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * fixing copy-paste error Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * common webhook functions Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * removing duplicates. Adding tests for generator Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * docs Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2024-02-17 06:49:31 -03:00
Engin Diri	dc9b5b7207	feat: add support for Pulumi ESC (#2997 ) Signed-off-by: Engin Diri <engin.diri@ediri.de>	2024-02-14 19:56:06 +01:00
Sourav Patnaik	a012f4829c	Implementation of Chef External Secrets Provider (#3127 ) * Adding the details for chef provider secret store. Issue: https://github.com/external-secrets/external-secrets/issues/2905 This commit intends to add the chef provider structure to the existing list of external-secrets providers. It defines the structure of the SecretStore and ClusterSecretStore for chef Provider. The yaml resource will contain 3 important parts to identify and connect to chef server to reconcile secrets. They are: 1. serverurl: This is the URL to the chef server. 2. username: The username to connect to the chef server. 3. auth: The password to connect to the chef server. It is a reference to an already existing kubernetes secret containing the password. This commit also contains the auto generated CRDs using the `make generate` command. Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> * Implementation for Chef ESO provided Signed-off-by: vardhanreddy13 <vvv.vardhanreddy@gmail.com> * - implemented Chef eso, added required methods - added unit test cases - added sample documentation Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> * Added Documentation for Authentication Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> * added documentation for Chef eso Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> * Updated chef ESO documentation Signed-off-by: vardhanreddy13 <vvv.vardhanreddy@gmail.com> * updated ValidateStore method signature Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> * made changes in chef provider to satisfy 'make docs' Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> * - updated code as per review comment, make reviewable suggestions Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> * modified chef provider code as per review comment Issue: https://github.com/external-secrets/external-secrets/issues/2905 Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> --------- Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> Signed-off-by: vardhanreddy13 <vvv.vardhanreddy@gmail.com> Signed-off-by: Sourav Patnaik <souravpatnaik123@gmail.com> Co-authored-by: Subroto Roy <subrotoroy007@gmail.com> Co-authored-by: vardhanreddy13 <vvv.vardhanreddy@gmail.com>	2024-02-14 09:54:08 +01:00
Shanti G	5f8d24000a	IBM provider: remove deprecated code for fetching secret by name (#3078 ) * remove deprecated code for fetching secret by name Signed-off-by: shanti.gundumalla@ibm.com <shanti.gundumalla@ibm.com> * update the documentation Signed-off-by: shanti.gundumalla@ibm.com <shanti.gundumalla@ibm.com> * fix linting Signed-off-by: shanti.gundumalla@ibm.com <shanti.gundumalla@ibm.com> --------- Signed-off-by: shanti.gundumalla@ibm.com <shanti.gundumalla@ibm.com> Co-authored-by: shanti.gundumalla@ibm.com <shanti.gundumalla@ibm.com>	2024-01-26 17:46:24 +01:00
Moritz Johner	26f9c3f1f4	chore: refactor/centralise secretKeyRef usage (#3022 ) * chore: refactor/centralise secretKeyRef usage Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2024-01-21 08:19:57 +01:00
kyasbal	b6b4f12509	Fix wrong namespaceSelector configuration in snippet in document (#3054 ) The snippet[1] was not aligning with the schema defined in CRD. [1] https://external-secrets.io/latest/guides/security-best-practices/ Signed-off-by: kyasbal <kyasbal1994@gmail.com>	2024-01-20 22:26:12 +01:00
Rodrigo Fior Kuntzer	31cecaa62b	feat: add support for Hashicorp Vault mTLS (#3018 ) * feat: adding support for mTLS to the Vault provider Signed-off-by: Rodrigo Fior Kuntzer <rodrigo@miro.com>	2024-01-19 00:43:28 +01:00
Moritz Johner	00249f1d43	Create OSSF scorecard job (#3032 ) * Create scorecard.yml Adds a scorecard workflow to regularly check the repo. See docs: https://github.com/marketplace/actions/ossf-scorecard-action#scorecard-badge Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>	2024-01-18 21:03:07 +01:00
Peter Stolz	1f665cea5d	docs: add command to install CRDs using kustomize (#3023 ) Signed-off-by: Peter Stolz <50801264+PeterStolz@users.noreply.github.com>	2024-01-14 15:27:29 +01:00
aviadkray	04bccc5316	gramar2 - intuitive not intuative (#2992 ) Signed-off-by: aviadkray <108495983+aviadkray@users.noreply.github.com>	2024-01-12 22:55:55 +01:00
aviadkray	92187cf2b9	fix grammar (#2991 )	2024-01-12 22:47:41 +01:00
Charles Thomas	40ab707049	doc: update bitwarden-cli image & version (#2971 ) Signed-off-by: Charles Thomas <ch@rlesthom.as>	2024-01-12 22:01:26 +01:00
Benjamin Walterscheid	ef19459914	Issue/2965 - Documentation does not reflect latest changes for datafrom for IBM Secret Manager (#3010 ) * 2963 - removed duplicated annotations Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * 2963 - updated documentation to use kv secret types with v1beta1 apiVersion Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * 2963 - minor yaml corrections Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> * added some example for v2 literal templating (#3007) Signed-off-by: Robert Paschedag <robert.paschedag@sap.com> Co-authored-by: Robert Paschedag <robert.paschedag@sap.com> Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> --------- Signed-off-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> Signed-off-by: Robert Paschedag <robert.paschedag@sap.com> Co-authored-by: Benjamin Walterscheid <benjamin.walterscheid@de.ibm.com> Co-authored-by: Robert Paschedag <robert.paschedag@web.de> Co-authored-by: Robert Paschedag <robert.paschedag@sap.com>	2024-01-12 21:48:49 +01:00
Zadkiel Aharonian	551706c494	docs: update controller reconcile error rule (#3021 ) Signed-off-by: Zadkiel Aharonian <zadkiel.aharonian@gmail.com>	2024-01-12 19:54:52 +01:00
Pedro Parra Ortega	ba8cf6bde5	Feat/allow keeper to work with complex types (#3016 ) * update dependencies (#3005) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Pedro Parra Ortega <parraortega.pedro@gmail.com> * feat: allow keeper to work with complex types Signed-off-by: Pedro Parra Ortega <parraortega.pedro@gmail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Pedro Parra Ortega <parraortega.pedro@gmail.com> Co-authored-by: eso-service-account-app[bot] <85832941+eso-service-account-app[bot]@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>	2024-01-12 00:30:58 +01:00
Robert Paschedag	45e2bd3796	added some example for v2 literal templating (#3007 ) Signed-off-by: Robert Paschedag <robert.paschedag@sap.com> Co-authored-by: Robert Paschedag <robert.paschedag@sap.com>	2024-01-09 09:38:23 +01:00
Bryce Thuilot	0bb4feae4a	feat: add PushSecret and DeleteSecret to onepassword provider (#2646 ) * feat: add PushSecret and DeleteSecret to onepassword provider Signed-off-by: Bryce Thuilot <bryce@thuilot.io> * refactor: clean code based on suggestions Signed-off-by: Bryce Thuilot <bryce@thuilot.io> * refactor: make suggested sonar cube changes Signed-off-by: Bryce Thuilot <bryce@thuilot.io> --------- Signed-off-by: Bryce Thuilot <bryce@thuilot.io>	2024-01-04 19:36:41 +01:00
Matúš Ferech	0ac250dd2d	Fix typo in pushsecrets docs (#2998 )	2024-01-04 15:28:05 +01:00
Moritz Johner	a0c5f7eb51	fix: bump kubernetes version support (#2981 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-12-25 13:53:10 +02:00
Gergely Brautigam	d6e24a82bd	feat: add templating to PushSecret (#2926 ) * feat: add templating to PushSecret Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * adding unit tests around templating basic concepts and verifying output Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * extracting some of the common functions of the parser Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * remove some more duplication Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * removed commented out code segment Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * added documentation for templating feature Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * simplified the templating for annotations and labels Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> --------- Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2023-12-22 21:45:34 +01:00
Gergely Brautigam	0bbfb1b954	feat: introduce tilt into the development process (#2966 ) Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2023-12-21 22:58:31 +01:00
Nitzan Nissim	b0bdef20b5	Add support for IBM Cloud Service Credentials secret type (#2950 )	2023-12-21 08:21:02 +02:00
Rajath Reghunath	632071d954	docs: Update contact email (#2948 ) (#2949 )	2023-12-14 13:35:39 +01:00
Victor Santos	96233b759a	docs(alibaba): add access key authentication (#2934 ) Signed-off-by: Victor Santos <vsantos.py@gmail.com>	2023-12-07 17:43:03 +01:00
Kiyofumi Sano	2f043ecaed	Signed-off-by: Kiyo510 <miraishida00510@gmail.com> (#2919 ) typo: ref:#2917 Fix typo in ExtermalSecretRewriteTransform	2023-12-02 14:53:11 +01:00
Victor Santos	3599384660	feat(fake): deprecate ValueMap to use Value instead (#2884 )	2023-12-02 06:57:48 +09:00
Tal Asulin	2441ad547b	Feat/Adding support for PushSecret using HashiCorp Vault KV v1 (#2879 ) * feat: init pushsecret support for vault kv1 Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * feat: update delete secret to support vault kv1 Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * test: adding unit tests for deletesecret for vault v1 coverage Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * docs: adding a note for describing the potential risk of using kv1 with pushsecret Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * feat: removing white spaces Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * feat: removing white spaces Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * chore: reverting buildMetadataPath changes as they are not called from v1 logic Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * feat: add custom metadata to vault v1 secrets Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * docs: adjusting documentation for supporting vault kv v1 Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * docs: adjusting documentation for supporting vault kv v1 Signed-off-by: talasulin <tal.asulin@appsflyer.comn> * Update docs/provider/hashicorp-vault.md Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Tal Asulin <tallin900@gmail.com> Signed-off-by: talasulin <tal.asulin@appsflyer.comn> --------- Signed-off-by: talasulin <tal.asulin@appsflyer.comn> Signed-off-by: Tal Asulin <tallin900@gmail.com> Co-authored-by: talasulin <tal.asulin@appsflyer.comn> Co-authored-by: tal-asulin <tal-asulin@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2023-11-30 04:51:30 -03:00
Moritz Johner	2b2661ebc2	fix: use service management endpoint for ACR when using WI (#2913 ) The `scope` parameter used to be the ACR url foobar.azurecr.io, but this stopped working. Turns out that you need to use the management endpoint as `scope` in order to authenticate with ACR. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-11-30 00:02:28 +01:00
Petter Abrahamsson	eea369578d	fix: Small typo in the 'templateFrom' guide (#2912 ) Signed-off-by: Petter Abrahamsson <pabraham@redhat.com>	2023-11-29 21:48:08 +01:00
Ryan Arnold	8fd952c6e7	Docs: Add details on how to use FilterPEM function (#2893 ) * Docs - add note clarifying how to use filterpem for future readers Signed-off-by: arnoldrw <arnold.rw@pg.com> * Update docs/guides/templating.md Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> Signed-off-by: Ryan Arnold <51235300+arnoldrw@users.noreply.github.com> --------- Signed-off-by: arnoldrw <arnold.rw@pg.com> Signed-off-by: Ryan Arnold <51235300+arnoldrw@users.noreply.github.com> Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2023-11-29 20:37:13 +01:00
Mateusz Łoskot	4acf82f23c	docs: Recommend use of Workload Identity for Azure Key Vault (#2906 ) * docs: Recommend use of Workload Identity for Azure Key Vault Mentions AAD Pod Identity is deprecated and updates overview of supported authentication modes for Azure Key Vault. This removes "should use aad-pod-identity" wording, see https://github.com/external-secrets/external-secrets/discussions/2901 Signed-off-by: Mateusz Łoskot <mateusz@loskot.net> * docs: Fix missing link to Multi-Tenancy Guide Signed-off-by: Mateusz Łoskot <mateusz@loskot.net> * docs: Fix typos Capitalise own names. Signed-off-by: Mateusz Łoskot <mateusz@loskot.net> --------- Signed-off-by: Mateusz Łoskot <mateusz@loskot.net>	2023-11-27 14:15:05 -03:00
Gergely Brautigam	3fbe318582	feat: allow pushing the whole secret to the provider (#2862 ) * feat: allow pushing the whole secret to the provider Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * add documentation about pushing a whole secret Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * disabling this feature for the rest of the providers for now Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * added scenario for update with existing property Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> --------- Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2023-11-21 22:00:21 +01:00
Victor Santos	6458048c62	docs: fix deprecation policy typo (#2875 ) Signed-off-by: Victor Santos <vsantos.py@gmail.com>	2023-11-15 13:42:35 +01:00
visokoo	2e4067ed3f	docs: remove additional space in dockercreds example that causes the last curly brace to be removed (#2877 ) Signed-off-by: Vivian Ta <ta.vivian@gmail.com>	2023-11-15 13:41:47 +01:00
Yonatan Koren	d42e19dc70	feat: AWS SecretsManager Config (allow ForceDeleteWithoutRecovery for PushSecret) (#2854 ) * Add secretsmanager config. Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com> * Fix unit tests. Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com> * Update docs, fix validation, tests. Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com> * Fix grammatical error in attribute descriptions. Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com> * Improve API docs for SecretsManager. Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com> --------- Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>	2023-11-14 18:44:22 -03:00
Lucas Pimentel Quintao	92d8210221	feat: update dataFrom with use of generator (#2793 ) * feat: adds example extract/find use case to dataFrom example Signed-off-by: Lucas Pimentel Quintao <lucaspimentel123@users.noreply.github.com>	2023-11-09 23:31:50 +01:00
Shuhei Kitagawa	c9b3f97425	Refactor the PushSecret interface (#2859 ) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-11-08 06:47:13 +09:00
Anders Swanson	f4a7c95b54	feat: Oracle PushSecret & find implementation (#2840 ) Signed-off-by: anders-swanson <anders.swanson@oracle.com>	2023-11-03 21:42:27 +01:00
Charl Klein	06301854d0	docs: - Minor Note to assist future readers (#2839 ) Signed-off-by: CharlKlein <19486531+CharlKlein@users.noreply.github.com>	2023-11-02 20:36:09 +01:00
Moritz Johner	9ff86eab51	fix: remove sourceRef.generatorRef from .data[] (#2735 ) fix: deprecate sourceRef.generatorRef from .data[] A generator is supposed to be used via .dataFrom[]. Usage in .data[] is not implemented and doesn't make sense, see #2720. This commit splits the SourceRef into two types: - one that only defines a secretStoreRef - one that allows to define either secretStoreRef or generatorRef The former is used in .data[] and the latter is used in .dataFrom[]. The Deprecated field is going to be removed with v1. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-11-02 14:37:59 +01:00
Anders Swanson	8dd934ceed	feat: Oracle provider service account masquerade (#2817 ) * feat: Oracle provider service account masquerade Signed-off-by: anders-swanson <anders.swanson@oracle.com>	2023-11-02 08:34:18 +01:00

1 2 3 4 5 ...

578 commits