mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Code Activity
2189 commits 135 branches 173 tags 201 MiB
Commit graph

306 commits

Author SHA1 Message Date
Helena Steck
2b5710d8d5
add missing default values for spec.target (#1431) 
Add missing default values for ExternalSecretTarget on CRD definition
Fixes #1233

Signed-off-by: Helena Steck <steckhelena@gmail.com>
 2022-08-08 21:27:13 +02:00
Moritz Johner
dfb5c9419b
chore: bump helm release (#1432) 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-08-05 08:36:49 +02:00
Gustavo Fernandes de Carvalho
b4e7acfaa9
Implements dataFrom key rewrite (#1381) 
* Implements dataFrom key rewrite

Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>

* docs: add example to remove invalid characters

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-08-04 15:24:02 -03:00
Daniel Quackenbush
b441112587
📚 update references to select "main" instead of "master" (#1346) 
* 📝 update references to select "main" instead of "master"

* Remove unused variable
 2022-07-29 14:34:25 -03:00
dependabot[bot]
9c09b936b1
build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 (#1322) 
* build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2

Bumps [sigs.k8s.io/controller-tools](https://github.com/kubernetes-sigs/controller-tools) from 0.9.0 to 0.9.2.
- [Release notes](https://github.com/kubernetes-sigs/controller-tools/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-tools/blob/master/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-tools/compare/v0.9.0...v0.9.2)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-tools
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix: re-gen CRDs

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-07-28 22:39:24 +02:00
cebidhem
39a51fbead
feat(helm): adds new flags to create metrics services for other scrapers (#1392) 
* adds new flag and docs for other metrics scrapers than Prometheus

Signed-off-by: cebidhem <cebidhem@pm.me>

* Update deploy/charts/external-secrets/templates/webhook-service.yaml

Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>

Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
 2022-07-28 08:09:47 +02:00
Moritz Johner
4affcb7345
🐛Clarify CAProvider usage in struct annotations (#1397) 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-07-27 18:44:23 -03:00
Mike
fdf1f9ce6f
feat: Add support for container auth to IBM provider. (#1177) 2022-07-26 22:48:07 +02:00
Emir Özbir
83c2d2214f
feat: Helm chart dns options (#1377) 
Adds dnsConfig to allow configuration of custom dns options for the eso deployment
 2022-07-25 12:05:04 +02:00
Gareth Evans
7eff8db532
feat: additional columns for kubectl output (#1359) 2022-07-19 20:48:37 +02:00
cebidhem
3245951003
[helm] - Adds variables to configure extra labels to the serviceAccounts (#1357) 
Signed-off-by: cebidhem <cebidhem@pm.me>
 2022-07-15 06:10:48 -03:00
Gustavo Fernandes de Carvalho
6f1d30079a
⬆️chore: bump version 0.5.8 (#1353) 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-07-12 10:42:07 -03:00
Gustavo Fernandes de Carvalho
fa91ba0f6c
Adds DecodingStrategy to ExternalSecrets (#1294) 
Fixes #920

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-07-12 09:18:00 -03:00
Gustavo Fernandes de Carvalho
ccea3d532f
🐛 Adds ability to configure cert lookahead interval for webhook pod. (#1304) 
Fixes #1249

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-07-12 06:25:16 -03:00
Kratik Jain
acdd9d7c67
📚 corrected helm install command (#1330) 2022-07-08 09:07:08 -03:00
Mark Hahl
03da357171
fix invalid YAML error when using extraVolumeMounts (#1311) 2022-07-08 07:57:08 -03:00
Moritz Johner
5d451d9e2d chore: bump helm 2022-06-22 17:16:19 +02:00
Django Cass
bd536016f3 Fixed some minor syntax issues 2022-06-22 20:08:50 +10:00
Django Cass
09bda1abc7 Added support for custom volume mounts for all 3 deployments 2022-06-22 20:04:55 +10:00
Moritz Johner
cff9be1664
feat(kubernetes): allow service account auth (#1201) 
* feat(kubernetes): allow service account auth

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-06-13 21:49:05 +02:00
Gustavo Carvalho
a2f265861a bump 0.5.6 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-06-01 13:48:45 -03:00
Moritz Johner
39234ad186 fix: bump 0.5.5 2022-05-31 19:31:43 +02:00
Docs
dec887e733 chore: bump 0.5.4 2022-05-31 11:18:52 +02:00
Gustavo Carvalho
e3e7acb153 bump controller-tools,google-golang-api,google-golang-grpc versions 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-05-25 07:39:22 -03:00
paul-the-alien[bot]
1829399a8d
Merge pull request #1163 from msolimans/main 
Add support for PodDisruptionBudget
 2022-05-21 05:51:57 +00:00
Docs
32869bfccf added certController.replicaCount 2022-05-20 17:31:46 -04:00
Docs
4ec2caa183 fixed indentation 2022-05-20 17:25:06 -04:00
Docs
f230ebc831 missing and in cert-controller-pdb 2022-05-20 12:37:19 -04:00
Docs
aa3e47df97 added missing and 2022-05-20 12:32:37 -04:00
Docs
5325ed10f9 linting fix: removed trailing spaces 2022-05-20 12:19:20 -04:00
paul-the-alien[bot]
1a6579b876
Merge pull request #1062 from dreadful-dragon/feature/azkv-tags-sync 
azkv tag feature
 2022-05-20 15:51:50 +00:00
Muhammad Soliman
8c03c11b0f update documentation 2022-05-19 19:13:09 -04:00
Muhammad Soliman
30f365a1e0 set default values 2022-05-19 19:12:48 -04:00
Muhammad Soliman
5364501406 fixed webhook pdb name 2022-05-19 18:54:56 -04:00
Muhammad Soliman
8cd35eac72 added pdb support 2022-05-19 18:46:36 -04:00
paul-the-alien[bot]
3de2cc8bee
Merge pull request #1040 from AndreyZamyslov/yandex-certificate-manager 
Support for Yandex Certificate Manager
 2022-05-17 16:48:58 +00:00
Cristina DE DIOS GONZÁLEZ
3256bc4b82 azkv tag feature 2022-05-16 16:49:34 +02:00
Moritz Johner
c532bac0be
chore: bump chart 0.5.3 (#1128) 2022-05-11 15:33:06 +02:00
david amick
435aefc7ac
Add 1Password support 2022-05-08 17:01:26 -07:00
Docs
c73206b29c Add senhasegura DSM provider 2022-05-02 13:28:18 -03:00
Gonzalo Servat
db7fd4a037
Fix casing on Gitlab 2022-04-28 21:43:42 +10:00
Gustavo Carvalho
7a6b5a0193 Bumping chart version to 0.5.2 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-27 13:12:16 -03:00
Docs
dc7df48cae add support for Yandex Certificate Manager 2022-04-22 21:40:52 +03:00
Moritz Johner
544c439d7d docs: replace logo, add support docs 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-04-21 19:19:46 +02:00
Gustavo Carvalho
3bd0d2d04f Making spec.target optional 
fixes #996

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-20 13:27:13 -03:00
paul-the-alien[bot]
e10760e509
Merge pull request #917 from external-secrets/chart-service-monitor 
feat: replace prometheus annotations with servicemonitor
 2022-04-20 15:14:38 +00:00
Moritz Johner
a98895a647 chore: add note for users using prometheus.enabled 2022-04-20 14:42:02 +02:00
paul-the-alien[bot]
dc8c74d345
Merge pull request #1003 from eric-maydeck/webhook-secret-annotations 
feat: (helm chart) enable annotations for webhook secret
 2022-04-20 11:54:22 +00:00
Moritz Johner
ef4eebb5cc chore: make changes backward-compatible 2022-04-19 22:24:09 +02:00
Moritz Johner
746ef24eb6 fix: gen readme 2022-04-19 21:50:38 +02:00
Moritz Johner
4ca31ba8af feat: replace prometheus annotations with servicemonitor 2022-04-19 21:50:38 +02:00
Jeroen Op 't Eynde
c04350d0d0
fix(helm-chart): remove caBundle and set name/namespace (#1001) 
Do not set caBundle to avoid issues with GitOps tools.
 2022-04-19 21:43:19 +02:00
Eric Maydeck
ee8d7e666a added webhook.secretAnnotations to helm readme 2022-04-19 13:23:47 -06:00
Gustavo Carvalho
59d08dda2b Added Dependency License Check Workflow 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-19 10:50:45 -03:00
Eric Maydeck
730eab548a feat: enable annotations for webhook secret 2022-04-14 18:03:10 -06:00
Merlin
4820cc9165 Ignore ExternalSecret processing if the store is not usuable (e.g. 
NotReady).
 2022-04-13 23:24:39 +02:00
Gustavo Carvalho
26a824fb2a Updated default ports to 10250 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-12 07:27:16 -03:00
Gustavo Carvalho
b5220fa618 Adding some options for webhook deployment: 
* hostNetwork for webhook pod
 * FailurePolicy for validatingwebhook definition
 * Changed webhook port to a configurable value
 * Defined default value as 9443
Fixes #944

Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-11 15:16:20 -03:00
Docs
51d910268a chore: bump to 0.5.1 2022-04-06 16:29:06 +02:00
Alfred Krohmer
74c06dc2e4
fix: only create cert-controller RBAC resources if cert-controller creation itself is enabled 
Previously both `certController.create` and `certController.rbac.create` needed to be set to `false` in order to prevent the cert-controller RBAC resources from being created.
 2022-04-06 14:15:49 +02:00
Gustavo Carvalho
c421da95c9 update chart version to 0.5.0 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-05 09:52:09 -03:00
Moritz Johner
c2bcceb057
feat: implement deletionPolicy (#900) 
* feat: implement deletionPolicy

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com>
 2022-04-05 13:38:06 +02:00
Alfred Krohmer
d7022b1bef
feat(vault): add option for JWT backend to authenticate with Kubernetes service account token (#768) 2022-04-04 21:20:58 +02:00
Eric Chan
e132edf0d4 Only generate create flags for cluster scoped crds 2022-03-30 13:19:35 +10:00
Eric Chan
efb75527e0 add create flags to each CRDs resources for a more fine-grained control 2022-03-30 13:19:35 +10:00
Gustavo Carvalho
c779ef59e7 Marking v1alpha1 as deprecated. 
Improving docs and menu order.
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-29 11:21:32 -03:00
paul-the-alien[bot]
85937c99e7
Merge pull request #800 from kinyat/feat/scoped-rbac 
Add the ability to support scoped RBAC with a scoped namespace
 2022-03-25 16:05:30 +00:00
Suraj Narwade
2d91580e95 Add namespace to service resource & fix typo 
Signed-off-by: Suraj Narwade <suraj.narwade@rvu.co.uk>
 2022-03-25 13:36:57 +00:00
Eric Chan
8dd8ca4d92 add new flags to control both cluster store and cluster external secret reconciler 2022-03-24 23:55:08 +10:00
Eric Chan
93114bdc0e make scopedRBAC to disable cluster secret store 2022-03-24 23:55:03 +10:00
Eric Chan
553d99a456 Add the ability to support scoped RBAC with a scoped namespace 2022-03-24 23:54:46 +10:00
paul-the-alien[bot]
d27f256ede
Merge pull request #873 from gusfcarvalho/fix/mutex-on-gcp 
Adding mutexes only for GCP provider
 2022-03-24 09:53:43 +00:00
Gustavo Carvalho
bae43b39c4 Adding mutexes only for GCP provider 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-24 06:34:07 -03:00
Moritz Johner
cf7e3832ae
feat(azure): implement workload identity (#738) 
* feat(azure): implement workload identity

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: Henning Eggers <henning.eggers@inovex.de>
 2022-03-22 21:59:01 +01:00
Docs
bdc5d9b378 fix: update CRDs 2022-03-20 09:34:03 +01:00
Daniel Hix
324c7def06
feat: implement ClusterExternalSecret (#542) 
Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
 2022-03-20 09:32:27 +01:00
paul-the-alien[bot]
fb056cc9b5
Merge pull request #784 from external-secrets/feature/hashivault-getallsecrets 
Implements Hashicorp Vault GetAllSecrets
 2022-03-12 11:19:04 +00:00
Docs
3502ab0a94 Add flags to control weather a deployment should be created 2022-03-11 09:21:50 +10:00
paul-the-alien[bot]
439ecfaf9d
Merge pull request #783 from AtzeDeVries/allow-gcp-cross-project-secrets 
GCP: allow cluster to be in different project
 2022-03-09 10:03:20 +00:00
Gustavo Carvalho
164e8776ec Adding docs and implementing ConversionStrategy 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-09 06:59:54 -03:00
Gustavo Carvalho
2f23fd28ed Adding GetAllSecrets for Hashicorp Vault 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-03-09 05:40:09 -03:00
Atze de Vries
2f53ab8220 also make optional for v1beta1 and add note to docs 2022-03-03 19:35:38 +01:00
Atze de Vries
739043283c make clusterProjectID omitemtpy 2022-03-02 18:03:45 +01:00
Atze de Vries
da47ad2cac GCP: allow cluster to be in different project 2022-03-02 11:24:04 +01:00
Moritz Johner
8fc4484cc6 feat: implement validating webhook 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-03-01 21:25:15 +01:00
Moritz Johner
fb8f496204 Merge branch 'main' into feature/conversion-webhook 2022-02-23 08:15:03 +01:00
rodrmartinez
39038b03c8 enforce that exactly one auth property is used 2022-02-22 15:45:45 -03:00
rodrmartinez
0392777965 Merge branch 'main' into feature/kubernetes-provider 2022-02-22 14:57:50 -03:00
Moritz Johner
b0de9a1196 chore: bump chart version 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-02-22 10:41:17 +01:00
Gustavo Carvalho
f9fd1a8c52 bump version to 0.4.3 2022-02-18 09:29:53 -03:00
rodrmartinez
7c4a17a9c3 Merge branch 'main' into feature/kubernetes-provider 2022-02-17 15:38:45 -03:00
rodrmartinez
86d7710727 changing kubernetes api struct 2022-02-17 14:45:43 -03:00
Gustavo Carvalho
c0ed7de5f7 Adding status information to kubectl get css 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-17 13:13:59 -03:00
Gustavo Carvalho
40ec693479 Merge branch 'main' into feature/conversion-webhook 
Fixed conflicts and implemented necessary changes for v1beta1
 2022-02-16 16:00:32 -03:00
paul-the-alien[bot]
86aedda434
Merge pull request #701 from external-secrets/feature/template-string-interface 
feat: implement template engine v2
 2022-02-16 17:16:24 +00:00
Gustavo Carvalho
2e6017dd4b Using cobra commands instead of several binaries 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-15 08:52:52 -03:00
Gustavo Carvalho
96cb340ace Implementing Requeue Interval for certController. Fixing unit tests and check-diff 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 16:05:17 -03:00
Gustavo Carvalho
1d8cfc4a12 Changed logic of Webhook check for certs. 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 15:46:10 -03:00
Gustavo Carvalho
1587fa02b1 Improved deployments and crd logic. Added cert-controller reconcile tests 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 10:08:27 -03:00
Gustavo Carvalho
38b7393eb6 Fixed weird bug with make helm generate 
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
 2022-02-14 07:25:29 -03:00