external-secrets

mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00

Author	SHA1	Message	Date
eso-service-account-app[bot]	6f21a9ab33	update dependencies (#2978 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-12-25 12:31:26 +01:00
eso-service-account-app[bot]	7e23fbebc4	update dependencies (#2960 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-12-18 22:08:16 +01:00
eso-service-account-app[bot]	41e9ba849b	update dependencies (#2946 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-12-11 22:49:44 +01:00
eso-service-account-app[bot]	5967b70653	update dependencies (#2922 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-12-04 19:16:33 +01:00
eso-service-account-app[bot]	c2957067fc	chore: update dependencies (#2903 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * chore: bump deps Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-11-29 20:45:52 +01:00
eso-service-account-app[bot]	431aef844d	update dependencies (#2890 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-11-20 11:43:16 +01:00
eso-service-account-app[bot]	e51d1a82a2	update dependencies (#2850 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-11-06 15:08:05 +01:00
Moritz Johner	9ff86eab51	fix: remove sourceRef.generatorRef from .data[] (#2735 ) fix: deprecate sourceRef.generatorRef from .data[] A generator is supposed to be used via .dataFrom[]. Usage in .data[] is not implemented and doesn't make sense, see #2720. This commit splits the SourceRef into two types: - one that only defines a secretStoreRef - one that allows to define either secretStoreRef or generatorRef The former is used in .data[] and the latter is used in .dataFrom[]. The Deprecated field is going to be removed with v1. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-11-02 14:37:59 +01:00
eso-service-account-app[bot]	faac47d83c	update dependencies (#2822 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-10-30 13:20:26 +01:00
Moritz Johner	51532ca8a1	feat: add AKS e2e managed (#2811 ) Migrate azure e2e tests to use the new TFC_* secrets which are provisioned through external-secrets/infrastructure. Also enable the use of `/ok-to-test-managed provider=azure` command to run e2e managed tests that verify integration with AKS and Azure Workload Identity (AZWI). Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-10-29 21:51:39 +01:00
Sonny Alves Dias	0a0fd050c0	add directive to apply template on secret names (#2802 ) Signed-off-by: Sonny Alves Dias <sonny.dias@superevilmegacorp.com>	2023-10-25 13:45:38 +02:00
Anders Swanson	b1bad77eb3	Oracle: Workload Identity authentication (#2781 ) * Oracle: Workload Identity authentication Signed-off-by: anders-swanson <anders.swanson@oracle.com> * Merge main Signed-off-by: anders-swanson <anders.swanson@oracle.com> * Cleanup go.mod Signed-off-by: anders-swanson <anders.swanson@oracle.com> * Lint Signed-off-by: anders-swanson <anders.swanson@oracle.com> * Use mutex for environment variables Signed-off-by: anders-swanson <anders.swanson@oracle.com> --------- Signed-off-by: anders-swanson <anders.swanson@oracle.com> Signed-off-by: Anders Swanson <91502735+anders-swanson@users.noreply.github.com>	2023-10-24 21:48:25 +02:00
Moritz Johner	9e6a69fd51	feat: bump go + deps (#2794 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-10-20 09:28:14 +09:00
eso-service-account-app[bot]	1f1d738b22	update dependencies (#2788 )	2023-10-17 19:30:09 +02:00
eso-service-account-app[bot]	c3c803bfe7	update dependencies (#2749 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-10-02 13:19:34 +02:00
eso-service-account-app[bot]	b9ecb18cb7	update dependencies (#2729 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-25 13:30:59 +02:00
Moritz Johner	b9f8ddad20	chore: update dependencies (#2724 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-09-21 22:14:02 +02:00
eso-service-account-app[bot]	157016b6bb	update dependencies (#2710 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-18 13:58:06 +02:00
eso-service-account-app[bot]	0e983110c3	update dependencies (#2675 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-09-04 12:51:39 +02:00
eso-service-account-app[bot]	77e57ab17a	update dependencies (#2657 ) Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>	2023-08-28 13:30:11 +02:00
Moritz Johner	97df83b518	chore: bump dependencies (#2654 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-08-28 11:50:46 +02:00
eso-service-account-app[bot]	5ead8ace2e	chore: update dependencies (#2605 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * bumping dependencies Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-08-15 08:19:21 -03:00
Gustavo Fernandes de Carvalho	6319977e63	Fixing when orphaned secret deletion when target.Name is not set (#2609 ) * Fixing when orphaned secret deletion when target.Name is not set Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * Linting Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * Fixing e2e tests Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-08-15 07:26:00 -03:00
Moritz Johner	416deb3303	chore: bump dependencies (#2568 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-08-02 21:42:03 +02:00
Shuhei Kitagawa	12a4470949	Support PushSecret Property for GCP (#2465 ) * Support PushSecret Property for GCP Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> * Take over the ownership if the label does not exist Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>	2023-08-01 14:38:47 +02:00
Michael Sauter	bdf437c2e1	Add support for Delinea DevOps Secrets Vault (#2415 ) * Add support for Delinea DevOps Secrets Vault Closes #1709. Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com> * fix: remove merge conflict Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Improve documentation Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com> --------- Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>	2023-07-06 18:01:43 +02:00
eso-service-account-app[bot]	13d59f9756	chore: update dependencies (#2463 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * fix: downgrade kube-openapi Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-07-05 19:51:50 +02:00
eso-service-account-app[bot]	a4c136ced9	chore: update dependencies (#2448 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * chore: downgrade kube-openapi due to incompat Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-06-26 13:11:47 +02:00
eso-service-account-app[bot]	51e309258f	chore: update dependencies (#2432 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * chore: update deps Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-06-21 19:53:09 +02:00
Michael Sauter	a4508a8091	Fix E2E test setup on non-linux machines (#2414 ) Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com>	2023-06-15 11:54:18 +02:00
eso-service-account-app[bot]	c9d09546c1	chore: update dependencies (#2406 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * fix: revert openapi change due to incompatibility Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-06-12 19:51:47 +02:00
Moritz Johner	05803f7aff	feat: add e2e tests for aws role-based auth (#2376 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-06-12 12:58:29 +02:00
eso-service-account-app[bot]	979d8beb94	chore: update dependencies (#2386 ) * update dependencies Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> * fix: downgrade one kube-openapi dep Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-06-05 19:51:13 +02:00
Moritz Johner	54664b43b1	chore: update dependencies (#2348 ) * chore: update dependencies Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: get rid of argo dependency to be independent of their k8s versioning Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-05-31 09:36:22 +02:00
Moritz Johner	5fb8758278	fix: implement parameterstore versions (#2352 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-05-26 01:06:10 +02:00
Maikel	6128e1d045	fix: use correct casing in docs for GitLab provider (#2303 ) * fix: use correct casing in docs for GitLab provider Signed-off-by: Maikel Vlasman <git@maikelvlasman.com> * chore: update helm tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Maikel Vlasman <git@maikelvlasman.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Maikel Vlasman <git@maikelvlasman.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-05-15 14:12:24 +02:00
Moritz Johner	06cc4bfc39	chore: bump dependencies (#2314 )	2023-05-15 11:11:10 +02:00
Gaurav Dasson	7b8fef2c18	✨ Enabling Vault IAM auth (#2208 ) * Enabling Vault IAM auth Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Adding spec Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Adding test cases and decoupling vault provider from aws for iam auth Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Fixing comments Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Fixing linter issues Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Fixing the check-diff errors Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> * Adding support for assumeRole operations when using static creds Signed-off-by: Gaurav Dasson <gdasson@Gauravs-Mac-mini.local> * Bumping the dependencies to fix the go.mod/go.sum conflicts Signed-off-by: Gaurav Dasson <gdasson@Gauravs-Mac-mini.local> * Bumping up e2e go mod files Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com> --------- Signed-off-by: Gaurav Dasson <gaurav.dasson@gmail.com>	2023-05-11 06:10:07 -03:00
Moritz Johner	6130c8f43b	chore: update deps (#2283 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-05-02 21:37:54 +02:00
Moritz Johner	d605a5b450	chore: update deps (#2227 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-04-16 15:42:44 +02:00
Moritz Johner	4d420d498a	chore: bump deps (#2203 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-04-05 21:15:18 +02:00
Moritz Johner	34ea2b035c	chore: bump deps (#2183 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-29 23:08:21 +02:00
Moritz Johner	e7088937f4	✨ update deps & fix dashboard json (#2148 ) * fix: export grafana dashboard properly The dashboard JSON must be exported via the share UI, instead of the JSON Model from settings. This allows a user to select the correct datasource when importing it via UI. see here: https://grafana.com/docs/grafana/latest/dashboards/manage-dashboards/#exporting-a-dashboard Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump deps Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-21 00:09:04 +01:00
azert9	f181500e98	Feature/scaleway provider (#2086 ) * wip: basic structure of scaleway provider Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: add some tests for GetAllSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: implement PushSecret Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: improved test fixtures Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: allow finding secrets by project using the path property Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add delete secret method Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * Delete dupplicate of push remote ref test implem Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add capability to use a secret for configuring access token Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: implement GetSecretMap Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: filtering by name and projetc id Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: add test for finding secret by name regexp Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: config validation Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: handle situation where no namespace is specified and we cannot provide a default Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: reference secrets by id or name Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: invalid request caused by pagination handling Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: log the error when failing to access secret version Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: pass context to sdk where missing Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add a cache for reducing AccessSecretVersion() calls Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: use GetSecret with name instead of ListSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: allow using secret name in ExternalSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: use latest_enabled instead of latest Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: optimized PushSecret and improved its test coverage Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: doesConfigDependOnNamespace was always true Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: use new api with refactored name-based endpoints Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * remove useless todo Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: use secret names as key for GetAllSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: support gjson propery lookup Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: e2e tests Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: e2e test using secret to store api key Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: cleanup left over resources on the secret manager before each e2e run Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * doc: add doc for scaleway provider Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: fix lint issues Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: cleanup code in e2e was commented Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: the previous version is disabled when we push to a secret Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * doc: add comments to ScalewayProvider struct to point to console and doc Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add missing e2e env vars for scaleway Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * docs: add scaleway to support/stability table Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Julien Loctaux <no.mail@jloc.fr> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-16 01:03:52 +01:00
Moritz Johner	7edfff81e3	chore: bump dependencies (#2124 ) * chore: bump dependencies Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: msal api breaking change Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-13 22:17:48 +01:00
renanaAkeyless	7e5fbb124b	✨ Add CABundle/CAProvider to Akeyless provider (#2092 ) * support adding CA Cert in Akeyless provider Signed-off-by: Docs <renana@akeyless.io> * update akeyless-go to v3 Signed-off-by: Docs <renana@akeyless.io> * update description Signed-off-by: Docs <renana@akeyless.io> * update description Signed-off-by: Docs <renana@akeyless.io> * update description Signed-off-by: Docs <renana@akeyless.io> * update description Signed-off-by: Docs <renana@akeyless.io> * fix comments Signed-off-by: Docs <renana@akeyless.io> --------- Signed-off-by: Docs <renana@akeyless.io>	2023-03-07 13:11:02 +01:00
Moritz Johner	d3213d13c2	chore: bump deps (#2098 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-06 11:57:08 +00:00
Moritz Johner	4e4992f0e2	🧹 bump dependencies (#2061 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-27 12:15:11 +00:00
Moritz Johner	409f18b964	🧹 bump deps (#2032 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-20 11:03:07 +01:00
Moritz Johner	151d83e807	chore: bump dependencies (#2012 ) * chore: bump dependencies Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: disable flow logs in EKS testbed This causes issues in the way we set up the trust relationship between GHA and AWS; We see a HTTP 400 when tf tries to assume this role. Because we don't need this we can disable it. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-14 17:42:44 +00:00
Moritz Johner	731da81162	🧹 bump dependencies & regenerate CRDs (#1990 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-07 14:08:01 +01:00
Moritz Johner	e0a9986ea0	feat: bump packages (#1976 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-01 23:53:27 +00:00
Gustavo Fernandes de Carvalho	a1f8a8adc7	🐛 Fixing PushSecret CRD generation (#1967 ) * Fixing PushSecret CRD generation Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * fix: increase hashicorp vault cache size to prevent eviction Also remove tiny cache size from e2e tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-02 00:30:10 +01:00
Moritz Johner	5ef3b23a68	feat: make cache generic, refactor feature flags (#1640 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-01-19 17:25:47 +01:00
Gustavo Fernandes de Carvalho	b36e027ad7	🧹 chore: bumps (#1925 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-16 08:35:34 -03:00
Gustavo Fernandes de Carvalho	a7d6224bda	🧹 chore: bumps (#1923 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-16 07:07:03 -03:00
Gustavo Fernandes de Carvalho	a2518e4997	🧹 chore: bumps (#1913 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-14 12:48:56 -03:00
Moritz Johner	736b287b6d	✨ implement azure referent auth (#1886 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-01-13 18:30:34 +00:00
Moritz Johner	5384954f46	aws secretsmanager/parameterstore referent auth (#1884 ) * feat: implement referentAuth for aws Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: e2e tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Update pkg/provider/aws/provider.go Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <moolen@users.noreply.github.com> * Update pkg/provider/aws/provider.go Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <moolen@users.noreply.github.com> * feat: allow each credential to be referent Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2023-01-13 10:19:25 +01:00
Moritz Johner	11c61d8581	feat: referent auth for gcp (#1887 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-01-10 14:40:42 +01:00
Gustavo Fernandes de Carvalho	6677c1e52d	🧹 chore: bumps (#1896 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-09 16:07:21 -03:00
dependabot[bot]	f2124d74da	🧹 chore(deps): Bump github.com/aws/aws-sdk-go from 1.44.171 to 1.44.172 (#1857 ) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.171 to 1.44.172. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.171...v1.44.172) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-01-04 20:51:09 +01:00
Moritz Johner	ac46bd2700	chore: bump golang-jwt (#1858 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-01-03 23:49:34 +00:00
Gustavo Fernandes de Carvalho	0bd9ea4dbd	✨ Templates from string (#1748 ) * Adds templates from string Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-03 19:02:43 -03:00
Gustavo Fernandes de Carvalho	ed173dcf77	chore: bumps (#1852 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-03 22:11:59 +01:00
Gustavo Fernandes de Carvalho	3762297fb3	🧹 chore: bumps (#1807 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-12-12 14:37:22 -03:00
Gustavo Fernandes de Carvalho	823486ced1	🧹chore:bumps (#1797 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-12-11 09:19:47 -03:00
Gustavo Fernandes de Carvalho	2f5fe6c594	🧹chore: bumps (#1792 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-12-07 14:40:51 -03:00
Gustavo Fernandes de Carvalho	0cb799b5cf	✨Feature/push secret (#1315 ) Introduces Push Secret feature with implementations for the following providers: * GCP Secret Manager * AWS Secrets Manager * AWS Parameter Store * Hashicorp Vault KV Signed-off-by: Dominic Meddick <dominic.meddick@engineerbetter.com> Signed-off-by: Amr Fawzy <amr.fawzy@container-solutions.com> Signed-off-by: William Young <will.young@engineerbetter.com> Signed-off-by: James Cleveland <james.cleveland@engineerbetter.com> Signed-off-by: Lilly Daniell <lilly.daniell@engineerbetter.com> Signed-off-by: Adrienne Galloway <adrienne.galloway@engineerbetter.com> Signed-off-by: Marcus Dantas <marcus.dantas@engineerbetter.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Nick Ruffles <nick.ruffles@engineerbetter.com>	2022-11-29 16:04:46 -03:00
Gustavo Fernandes de Carvalho	d71e905a47	🧹chore: bumps (#1758 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-11-28 07:46:50 -03:00
Moritz Johner	dd08a78684	feat: fips compliant build using boringcrypto (#1731 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-11-23 21:25:19 +01:00
Moritz Johner	1ca002cb9b	chore: bump dependencies (#1741 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-11-21 23:08:35 +01:00
dependabot[bot]	b3334228ed	chore(deps): bump github.com/aws/aws-sdk-go from 1.44.141 to 1.44.142 (#1730 ) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.141 to 1.44.142. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](aws/aws-sdk-go@v1.44.141...v1.44.142) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-11-19 19:55:18 +01:00
Moritz Johner	a60a6d96c4	feat: bump deps (#1729 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-11-19 00:48:02 +01:00
Gustavo Fernandes de Carvalho	bd4495814b	🧹Bumping versions (#1708 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-11-09 17:44:07 -03:00
Gustavo Fernandes de Carvalho	d1fa28532d	🧹 chore: bumping versions (#1688 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-10-31 06:54:52 -03:00
Moritz Johner	dabfa5a589	Feature: initial generator implementation + Github Actions OIDC/AWS (#1539 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2022-10-29 20:15:50 +02:00
Moritz Johner	2d5cb1b28c	chore: bump 0.6.1 (#1678 ) * chore: bump 0.6.1 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: increase timeout for azure/e2e test Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-28 21:18:14 +02:00
Moritz Johner	8643e65100	chore: bump dependencies (#1667 ) * chore: bump dependencies Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: bump libksba package Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: cleanup go sum Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-25 22:42:34 +02:00
Moritz Johner	e9c8c4548d	fix: bump golang/x/text pkg (#1652 ) address CVE-2022-32149 https://avd.aquasec.com/nvd/2022/cve-2022-32149/ Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-19 21:33:28 +02:00
dependabot[bot]	9a3928e274	chore(deps): bump github.com/googleapis/gax-go/v2 from 2.5.1 to 2.6.0 (#1643 ) Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/googleapis/gax-go/releases) - [Commits](https://github.com/googleapis/gax-go/compare/v2.5.1...v2.6.0) --- updated-dependencies: - dependency-name: github.com/googleapis/gax-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-17 22:14:47 +02:00
dependabot[bot]	7213c2db60	chore(deps): bump cloud.google.com/go/iam from 0.3.0 to 0.5.0 (#1645 ) (#1644 ) * chore(deps): bump cloud.google.com/go/iam from 0.3.0 to 0.5.0 Bumps [cloud.google.com/go/iam](https://github.com/googleapis/google-cloud-go) from 0.3.0 to 0.5.0. - [Release notes](https://github.com/googleapis/google-cloud-go/releases) - [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.3.0...v0.5.0) --- updated-dependencies: - dependency-name: cloud.google.com/go/iam dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix: bump e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-17 20:11:22 +02:00
dependabot[bot]	ec6dc62f01	chore(deps): bump cloud.google.com/go/iam from 0.3.0 to 0.5.0 (#1645 ) * chore(deps): bump cloud.google.com/go/iam from 0.3.0 to 0.5.0 Bumps [cloud.google.com/go/iam](https://github.com/googleapis/google-cloud-go) from 0.3.0 to 0.5.0. - [Release notes](https://github.com/googleapis/google-cloud-go/releases) - [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.3.0...v0.5.0) --- updated-dependencies: - dependency-name: cloud.google.com/go/iam dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix: bump e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-17 19:12:58 +02:00
dependabot[bot]	4e59e48aef	chore(deps): bump github.com/onsi/gomega from 1.21.1 to 1.22.1 (#1647 ) * chore(deps): bump github.com/onsi/gomega from 1.21.1 to 1.22.1 Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.21.1 to 1.22.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/gomega/compare/v1.21.1...v1.22.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix: bump e2e deps Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-17 19:12:24 +02:00
Yannay Hammer	14f5ddf198	Added namespace condition to ClusterSecretStore (#1635 ) * Added namespace condition to ClusterSecretStore Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Added the new conditions field to the docs Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Added tests to ClusterSecretStore namespace conditions Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Added some comments to explain tests better Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Fixed a testcase Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Increased golangci timeout to 10m Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Fixed test to use fakeProvider correctly Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Removed hardcoded timeout from make lint Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Improved error message on non matching namespace Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Modified testCase to use GenericStore interface Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Attempt at generalizing the testcase and reducing code duplication Signed-off-by: Yannay Hammer <yannayha@gmail.com> * Reduced some diff Signed-off-by: Yannay Hammer <yannayha@gmail.com> * fix: tidy e2e mod Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Yannay Hammer <yannayha@gmail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Docs <docs@external-secrets.io> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-17 16:40:18 +02:00
dependabot[bot]	27d0cd72f5	chore(deps): bump sigs.k8s.io/controller-runtime from 0.12.3 to 0.13.0 (#1547 ) * chore(deps): bump sigs.k8s.io/controller-runtime from 0.12.3 to 0.13.0 Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.12.3 to 0.13.0. - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.12.3...v0.13.0) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix: remove dependency on crossplane-runtime/pkg/test Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-13 20:24:56 +02:00
dependabot[bot]	c85e87dd08	chore(deps): bump github.com/aws/aws-sdk-go from 1.44.101 to 1.44.114 (#1627 ) * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.101 to 1.44.114 Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.101 to 1.44.114. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.101...v1.44.114) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix: add ginkgo tools Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-10 21:13:39 +02:00
dependabot[bot]	792f15fe9e	chore(deps): bump google.golang.org/grpc from 1.49.0 to 1.50.0 (#1622 ) * chore(deps): bump google.golang.org/grpc from 1.49.0 to 1.50.0 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.49.0 to 1.50.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.49.0...v1.50.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix: bump e2e pkg Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-10 20:48:22 +02:00
Tanat Lokejaroenlarb	2caea38f9d	Allow specifying the webhook's readiness probe port (#1593 ) * Parameterize the readiness probe port and add a default address since `healthz-address` is an address not a port Signed-off-by: insomniacoder <tanatloke@gmail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-10-07 00:06:28 +02:00
Moritz Johner	1672dfd556	feat: test UBI image build (#1574 ) * feat: test UBI image build Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-Authored-By: Idan Adar <iadar@il.ibm.com> Co-Authored-By: mrgadgil	2022-10-06 19:14:13 +02:00
Dominik Zeiger	fa38fe1e60	enable configuration of environment_scope for gitlab provider (#1565 ) * enable configuration of environment_scope for gitlab provider Signed-off-by: Dominik Zeiger <dominik@zeiger.biz>	2022-09-27 22:08:38 +02:00
Moritz Johner	af367e9933	chore: refactor provider (#1529 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-09-12 14:55:46 +02:00
Moritz Johner	ed0ceb8d84	fix: aws parameter store json decode, bump go 1.19 (#1525 ) * fix: parameter store should decode complex json values Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-09-06 19:46:36 +02:00
dependabot[bot]	67fedc840e	✨ Kubernetes v1.24 upgrade (#1345 ) * build(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.3 Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.12.3. - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.12.3) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * feat: bump kubernetes 1.24 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: backwards-compatible vault implementation Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add audiences field to serviceAccountRef This will be used by aws, azure, gcp, kubernetes & vault providers in combination with TokenRequest API: it will _append_ audience claims to provider-specific audiences. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: refactor kubernetes client to match provider/client interfaces the kubernetes provider mixed up provider and client interfaces which made it really hard to reason about. This commit separates into two structs, each implements one interface. The client struct fields have been renamed and annotated so their use and scope is clear. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: deprecate expirationSeconds expirationSeconds is not needed because we generate a service account token on the fly for a single use. There will be no replacement for this. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: rename token fetch audiences field Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: generate CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-08-19 17:32:06 +02:00
Gustavo Fernandes de Carvalho	b4e7acfaa9	✨Implements dataFrom key rewrite (#1381 ) * Implements dataFrom key rewrite Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * docs: add example to remove invalid characters Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2022-08-04 15:24:02 -03:00
Gustavo Fernandes de Carvalho	a99628eb06	🐛fixes e2e tests (#1420 ) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-08-02 16:58:46 -03:00
Gustavo Fernandes de Carvalho	fa91ba0f6c	✨ Adds DecodingStrategy to ExternalSecrets (#1294 ) Fixes #920 Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-07-12 09:18:00 -03:00
Docs	f4d6b7392a	fix lint recomendations	2022-06-21 17:41:02 -03:00
Docs	9d55b9bbeb	Adds azure managed test case	2022-06-21 14:46:50 -03:00
Docs	6a0aee37e7	Adds CreateSecretStoreWithWI method	2022-06-21 14:46:17 -03:00
Moritz Johner	cff9be1664	feat(kubernetes): allow service account auth (#1201 ) * feat(kubernetes): allow service account auth Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-06-13 21:49:05 +02:00
Moritz Johner	8c14f8aff0	fix: loosen validation to enable referent auth. also adding tests for vault. this is the only provider that supports that as of now. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-05-23 20:10:16 +02:00
Moritz Johner	8e0a5b96c6	ArgoCD & Flux e2e suites (#1041 ) * feat: add gitops suite Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add flux tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: pin to v1.23 kubectl version to avoid invalid apiVersion issue see: https://github.com/aws/aws-cli/issues/6920 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Revert "fix: pin to v1.23 kubectl version to avoid invalid apiVersion issue" This reverts commit 2f78226cdce1683a0255457b41199d10dd30509f. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-05-23 16:14:21 +02:00
Docs	b8370897f0	Update docs from v1alpha to v1beta1, fix typos	2022-04-18 12:15:39 -07:00
Merlin	4820cc9165	Ignore ExternalSecret processing if the store is not usuable (e.g. NotReady).	2022-04-13 23:24:39 +02:00
paul-the-alien[bot]	84af221762	Merge pull request #959 from external-secrets/chore/refactor-vault Chore/refactor vault	2022-04-13 13:02:14 +00:00
Gustavo Carvalho	4fcf272ce0	Refactoring vault provider. Removing RawRequest in favor of Logical Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-13 07:13:25 -03:00
Gustavo Carvalho	b5220fa618	Adding some options for webhook deployment: * hostNetwork for webhook pod * FailurePolicy for validatingwebhook definition * Changed webhook port to a configurable value * Defined default value as 9443 Fixes #944 Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-11 15:16:20 -03:00
Docs	2c246c6d56	feat: gcp getall implementaion	2022-04-06 18:29:27 +02:00
Moritz Johner	c2bcceb057	feat: implement deletionPolicy (#900 ) * feat: implement deletionPolicy Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-05 13:38:06 +02:00
Alfred Krohmer	d7022b1bef	feat(vault): add option for JWT backend to authenticate with Kubernetes service account token (#768 )	2022-04-04 21:20:58 +02:00
Gustavo Carvalho	c779ef59e7	Marking v1alpha1 as deprecated. Improving docs and menu order. Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-29 11:21:32 -03:00
Gustavo Carvalho	a2a4effa4a	Adding docs for v1beta1 vs v1alpha1. Added one test for v1alpha1 compatibility Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-29 11:11:07 -03:00
Moritz Johner	56c69a1063	feature: aws getallsecrets (#820 ) * feature: aws getallsecrets Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: e2e test / find by name * feat: add get-by-tags tests, consolidate with existing ones Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add path tests * fix: revert azure * fix: secretsmanager prealloc * feat: aws sm path tests * feat: implement secretsmanager path filter * fix: use low refresh interval due to eventual consistency * revert makefile changes * fix: add path test cases to managed Co-authored-by: Docs <docs@external-secrets.io>	2022-03-24 17:09:32 +01:00
Gustavo Carvalho	bae43b39c4	Adding mutexes only for GCP provider Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-24 06:34:07 -03:00
Daniel Hix	324c7def06	feat: implement ClusterExternalSecret (#542 ) Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2022-03-20 09:32:27 +01:00
paul-the-alien[bot]	fb056cc9b5	Merge pull request #784 from external-secrets/feature/hashivault-getallsecrets Implements Hashicorp Vault GetAllSecrets	2022-03-12 11:19:04 +00:00
Gustavo Carvalho	caf00a43aa	Chore: bumping gitlab-go to 0.58.0 Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2022-03-10 08:46:17 -03:00
Gustavo Carvalho	94d68f6a18	Adding EngineVersion=v1 to GCP e2e tests Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-09 14:42:41 -03:00
Gustavo Carvalho	10c3ba355d	Changes e2e test default api to v1beta1. Adds GetAllSecrets test Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-09 13:43:37 -03:00
Gustavo Carvalho	40ec693479	Merge branch 'main' into feature/conversion-webhook Fixed conflicts and implemented necessary changes for v1beta1	2022-02-16 16:00:32 -03:00
Gustavo Carvalho	2e6017dd4b	Using cobra commands instead of several binaries Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-15 08:52:52 -03:00
Gustavo Carvalho	23eb831571	Fixing cert-controller image tag Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 19:08:30 -03:00
Gustavo Carvalho	0db78819bb	Fixing lints and adding correct image names in eso.go Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 16:37:32 -03:00
Gustavo Carvalho	3c167edd4b	Fixing some helm linting and an error on e2e Makefile Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 16:05:34 -03:00
Gustavo Carvalho	c40aebdfba	Adding variables to configure versions of webhook and certcontroller Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 15:59:18 -03:00
Gustavo Carvalho	bbedad6053	WIP: improve deployment manifests to be on a functional state Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 15:53:40 -03:00
Moritz Johner	a627e82639	chore: fix smells Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-02-11 08:26:32 +01:00
Moritz Johner	54e68399ec	feat: implement template engine v2 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-02-11 08:26:31 +01:00
paul-the-alien[bot]	027f28ec97	Merge pull request #700 from EladGabay/elad/oci-secret-by-name oracle vault: Use instance principal if auth is empty	2022-02-10 10:34:40 +00:00
Moritz Johner	5b8ab034ec	feat(vault): marshal nested value as json, add docs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-08 08:05:10 +01:00
Elad Gabay	fe416890b1	oracle vault: Use instance principal if auth is empty Currently the oracle vault's secretstore uses a specific user credentials. This commit introduce a new way to access the vault, using the instance principal. All user's details moved to "auth" section in the OracleProvider which now is optional. If "auth" is empty, by default, we use the instance principal, otherwise if specified user's auth details, we use them. In addition: - Fixed the fingerprint secret reference which until now used the privatekey secret instead of its reference. - Bump OCI SDK version.	2022-02-07 18:38:10 +02:00
Lucas Severo Alves	5a464df585	Revert "GetAllSecrets CRD and Azure implementation"	2022-02-01 16:52:18 +01:00
paul-the-alien[bot]	ca0cda7c16	Merge pull request #613 from external-secrets/getall-Secrets GetAllSecrets CRD and Azure implementation	2022-02-01 13:18:20 +00:00
paul-the-alien[bot]	b54b8c7588	Merge pull request #653 from external-secrets/chore/update-k8s chore: update k8s / envtest	2022-01-29 16:25:32 +00:00
Moritz Johner	d651f689e7	feat(e2e): add tests for type=cert and type=key Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-28 20:24:37 +01:00
Moritz Johner	e015bed08d	chore: update k8s / envtest	2022-01-28 19:51:07 +01:00
Sebastian Gomez	43e4eb320a	Merge branch 'main' into getall-Secrets	2022-01-27 16:44:29 -05:00
Moritz Johner	64589cddda	chore: implement aws parameterstore e2e tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-27 08:36:45 +01:00
Sebastian Gomez	dd23a813d6	Merge branch 'main' into getall-Secrets	2022-01-26 12:35:35 -05:00
Sebastian Gomez	48ac7b991f	Created new struct for dataFrom	2022-01-25 16:01:33 -05:00
Moritz Johner	5d396e1351	chore: test e2e-managed Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-25 08:04:17 +01:00
Sebastian Gomez	d607eb60df	main conflict resolution	2022-01-24 16:52:20 -05:00
Sebastian Gomez	0cc03caae4	Fixed lint issues	2022-01-24 16:17:18 -05:00
Moritz Johner	759d241cd9	chore: test e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-24 21:28:37 +01:00
Moritz Johner	ea5689a945	chore: test e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-24 20:23:33 +01:00
Moritz Johner	008268ee00	feat(e2e): implement aws tests, enhance gcp tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-21 23:37:50 +01:00
Moritz Johner	e392839e43	fix(e2e): use correct auth compsition	2022-01-14 20:37:02 +01:00
paul-the-alien[bot]	4c6b6a1e84	Merge pull request #525 from HanseMerkur/vault_optional_path Optional path for Vault SecretStore	2022-01-14 19:33:29 +00:00
paul-the-alien[bot]	6acb8852b5	Merge pull request #469 from external-secrets/chore/specific_e2e_setup Initial setup for wi gcp testing	2022-01-14 19:27:54 +00:00

1 2 3 4 5 ...

337 commits