1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Commit graph

2107 commits

Author SHA1 Message Date
Moritz Johner
5ef3b23a68
feat: make cache generic, refactor feature flags (#1640)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-19 17:25:47 +01:00
Gustavo Fernandes de Carvalho
769efdc391
Feature/deletion policies (#1914)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-19 06:37:19 -03:00
Denis Policastro
709db58d5b
Update aws-parameter-store.md (#1931)
Signed-off-by: Denis Policastro <denis.policastro@gmail.com>

Signed-off-by: Denis Policastro <denis.policastro@gmail.com>
2023-01-18 21:08:23 +01:00
Gustavo Fernandes de Carvalho
f2cdf383b8
🐛 fixing image rebuild pipeline (#1934)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-18 07:04:12 -03:00
a27kash
5ab02775ca
Set GOOS and GOARCH from TARGETPLATFORM (#1915)
Removed hardcoded, single platform values for GOOS and GOARCH.
Set GOOS and GOARCH from TARGETPLATFORM to build multi-platform images.
Ref: https://docs.docker.com/engine/reference/builder/#automatic-platform-args-in-the-global-scope
Ref: https://docs.docker.com/build/building/multi-platform/
Build a multi-platform image `docker buildx build --push --platform linux/arm64,linux/amd64 --tag external-secrets:dev --file Dockerfile.standalone .`

Signed-off-by: a27kash <a27kash@gmail.com>

Signed-off-by: a27kash <a27kash@gmail.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>
Co-authored-by: Moritz Johner <moolen@users.noreply.github.com>
2023-01-17 21:16:00 +01:00
Lucas Severo Alves
47ea26f6df
Update README.md (#1930)
Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>

Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>
2023-01-17 18:27:09 +01:00
Gustavo Fernandes de Carvalho
19f297e08d
🧹 bump: 0.7.2 (#1926)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-16 09:02:55 -03:00
Gustavo Fernandes de Carvalho
b36e027ad7
🧹 chore: bumps (#1925)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-16 08:35:34 -03:00
Gustavo Fernandes de Carvalho
a7d6224bda
🧹 chore: bumps (#1923)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-16 07:07:03 -03:00
Gustavo Fernandes de Carvalho
a2518e4997
🧹 chore: bumps (#1913)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-14 12:48:56 -03:00
Moritz Johner
736b287b6d
implement azure referent auth (#1886)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-13 18:30:34 +00:00
Emin Alemdar
201e56f2b9
Added my new blog post (#1909)
I've added my new blog post about Push Secret feature.

Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com>

Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com>
2023-01-13 17:30:44 +01:00
Gustavo Fernandes de Carvalho
833658699d
Adds Keyvault PushSecret (#1883)
* Adds Keyvault PushSecret

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-13 07:13:37 -03:00
Moritz Johner
5384954f46
aws secretsmanager/parameterstore referent auth (#1884)
* feat: implement referentAuth for aws

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: e2e tests

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* Update pkg/provider/aws/provider.go

Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>

* Update pkg/provider/aws/provider.go

Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>

* feat: allow each credential to be referent

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>
Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
2023-01-13 10:19:25 +01:00
Hiroshi Muraoka
f4e70ddfed
🐛 GCP: prevent goroutine leak on workload identity reconciliation (#1902)
Signed-off-by: Hiroshi Muraoka <h.muraoka714@gmail.com>
2023-01-12 09:27:01 -03:00
Moritz Johner
922c7e8ece
fix: explicitly use new kubectl gcp auth (#1904)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-12 10:57:47 +01:00
Ahsan Gondal
7afa741246
Update 1password-automation.md (#1895)
updating docs to reflect the correct command and template format as per
https://developer.1password.com/docs/cli/create-item

Signed-off-by: Ahsan Gondal <ahsangondal15@gmail.com>

Signed-off-by: Ahsan Gondal <ahsangondal15@gmail.com>
2023-01-10 18:02:27 +01:00
Moritz Johner
11c61d8581
feat: referent auth for gcp (#1887)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-10 14:40:42 +01:00
Gustavo Fernandes de Carvalho
6677c1e52d
🧹 chore: bumps (#1896)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-09 16:07:21 -03:00
cDR (Taco)
54f8d47ba8
fix: typo (#1894)
Signed-off-by: cDR (Taco) <me@codar.nl>

Signed-off-by: cDR (Taco) <me@codar.nl>
2023-01-09 12:37:47 +01:00
cspargo
fdc21faf61
AWS Role Chaining (#1855)
Signed-off-by: cspargo <colinspargo@gmail.com>
2023-01-08 11:49:22 -03:00
Gustavo Fernandes de Carvalho
0d08e0497e
Implements Deletion policy for Hashicorp vault. (#1879)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-06 13:40:42 -03:00
Gustavo Fernandes de Carvalho
a051da82cf
🐛 Fixes vault PushSecret logic (#1866)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-06 13:17:18 -03:00
Gustavo Fernandes de Carvalho
a2da89e348
Fixing links and adding stability support for 0.7.x (#1863)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-05 10:19:19 +01:00
Moritz Johner
c7576856d5
🧹 bump 0.7.1 (#1861)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-04 21:14:42 +01:00
dependabot[bot]
f2124d74da
🧹 chore(deps): Bump github.com/aws/aws-sdk-go from 1.44.171 to 1.44.172 (#1857)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.171 to 1.44.172.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.171...v1.44.172)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 20:51:09 +01:00
Florent Baldino
5d599536b4
🐛 Use the right metrics annotations for the webhook service (#1841) 2023-01-04 18:02:08 +01:00
Dominik Zeiger
6c7e5cecce
🐛 gitlab: Fallback to wildcard variables and use pagination (bugfix) (#1838)
* gitlab: fallback to wildcard variables when using "GetAllSecrets"

Signed-off-by: Dominik Zeiger <dominik@zeiger.biz>
2023-01-04 17:58:55 +01:00
Moritz Johner
cdabe6df4e
feat: add ability to set automount to false (#1859)
Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech>

Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech>
2023-01-04 10:28:05 +01:00
Moritz Johner
ac46bd2700
chore: bump golang-jwt (#1858)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-01-03 23:49:34 +00:00
Gustavo Fernandes de Carvalho
0bd9ea4dbd
Templates from string (#1748)
* Adds templates from string

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-03 19:02:43 -03:00
Gustavo Fernandes de Carvalho
ed173dcf77
chore: bumps (#1852)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2023-01-03 22:11:59 +01:00
Moritz Johner
e4f93a2f2b
feat: add fossa check (#1819)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-12-16 21:53:04 +01:00
oddy
7839ab6447
Fix typo (#1826)
Signed-off-by: dubs11kt <dubs11kt@gmail.com>

Signed-off-by: dubs11kt <dubs11kt@gmail.com>
2022-12-16 19:37:07 +01:00
fossabot
269fd0e88d
Add license scan report and status (#1818)
Signed-off-by: fossabot <badges@fossa.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-12-15 00:05:43 +01:00
Moritz Johner
a00d8ab857
fix: replace bad URLs (#1815)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-12-14 16:31:47 +01:00
Moritz Johner
7b6a04b98b
fix: add status checks permission (#1813)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-12-14 16:31:38 +01:00
Jakob Kolb
026f43e83c
Add note on required Service Account roles. (#1814)
I wasted a couple of hours to figure out that this documentation only works with the correct roles attached to the GCP Service account as described here: 
https://stackoverflow.com/a/63240340

Adding a hint to the docs here, could make it more accessible for others.

Signed-off-by: Jakob Kolb <jakob.j.kolb@gmail.com>

Signed-off-by: Jakob Kolb <jakob.j.kolb@gmail.com>
2022-12-14 14:43:42 +01:00
Riccardo Colella
131bd617aa
[FEATURE] Customizable encoding of logging timestamp (#1808)
Objective of this commit is to allow logs to be more readable.

Default log ts encoding in the logger employed (zap) is unix time.
This leads to logs not much human-readable. This change introduces the
possibility to customize the ts with a set of preconfigured encodings:
one of 'epoch', 'millis', 'nano', 'iso8601', 'rfc3339' or 'rfc3339nano'

Default value does not change

Signed-off-by: RiccardoColella <colella.git@outlook.com>

Signed-off-by: RiccardoColella <colella.git@outlook.com>
2022-12-13 21:01:07 +01:00
Steven Bressey
7416a84b2a
Add flag to set CRD names in cert controller (#1811)
* added new crd-names flag to reconcile only installed CRDs in cert controller

Signed-off-by: Steven Bressey <sbressey@bressey.me>

* add guide to disable cluster features

Signed-off-by: Steven Bressey <sbressey@bressey.me>

* fix fmt

Signed-off-by: Steven Bressey <sbressey@bressey.me>
Co-authored-by: Steven Bressey <sbressey@bressey.me>
2022-12-13 20:56:30 +01:00
Gustavo Fernandes de Carvalho
3762297fb3
🧹 chore: bumps (#1807)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2022-12-12 14:37:22 -03:00
dependabot[bot]
c09af24224
🧹chore(deps): bump golang from 1.19.3-alpine to 1.19.4-alpine (#1801)
Bumps golang from 1.19.3-alpine to 1.19.4-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-12 05:59:55 -03:00
dependabot[bot]
16907f5a54
🧹chore(deps): bump actions/setup-python from 4.3.0 to 4.3.1 (#1802)
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.3.0 to 4.3.1.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4.3.0...v4.3.1)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-12 05:59:26 -03:00
Gustavo Fernandes de Carvalho
29996fade2
🧹chore:bump 0.7.0 (#1800)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2022-12-11 09:44:44 -03:00
Gustavo Fernandes de Carvalho
8f7bc5fe80
🐛 fixing docs release (#1799)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2022-12-11 09:32:50 -03:00
Gustavo Fernandes de Carvalho
823486ced1
🧹chore:bumps (#1797)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2022-12-11 09:19:47 -03:00
Emin Alemdar
04ce52c797
Added KCD UK 2022 talk (#1795)
I've added the talk we have delivered with Ben Gurney at Kubernetes Community Days UK 2022 conference.

Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com>

Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com>
2022-12-09 23:54:45 +01:00
Gustavo Fernandes de Carvalho
2f5fe6c594
🧹chore: bumps (#1792)
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2022-12-07 14:40:51 -03:00
cjc7373
5aaebf8bc0
fix: broken links in reference doc (#1778)
Signed-off-by: Jiacheng Cheng <jiacheng.cheng@sap.com>

Signed-off-by: Jiacheng Cheng <jiacheng.cheng@sap.com>
2022-12-05 22:38:11 +01:00
Pedro Parra Ortega
97f325466e
Allow chart to configure metrics-addr flag based on metric port values (#1764)
* add cmd option to configure metrics port

Signed-off-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>

* 🧹chore: bumps (#1758)

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>

* Feature/push secret (#1315)

Introduces Push Secret feature with implementations for the following providers:

* GCP Secret Manager
* AWS Secrets Manager
* AWS Parameter Store
* Hashicorp Vault KV

Signed-off-by: Dominic Meddick <dominic.meddick@engineerbetter.com>
Signed-off-by: Amr Fawzy <amr.fawzy@container-solutions.com>
Signed-off-by: William Young <will.young@engineerbetter.com>
Signed-off-by: James Cleveland <james.cleveland@engineerbetter.com>
Signed-off-by: Lilly Daniell <lilly.daniell@engineerbetter.com>
Signed-off-by: Adrienne Galloway <adrienne.galloway@engineerbetter.com>
Signed-off-by: Marcus Dantas <marcus.dantas@engineerbetter.com>
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Nick Ruffles <nick.ruffles@engineerbetter.com>
Signed-off-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>

* Fixing release pipeline for boringssl (#1763)

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>

Signed-off-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Dominic Meddick <dominic.meddick@engineerbetter.com>
Signed-off-by: Amr Fawzy <amr.fawzy@container-solutions.com>
Signed-off-by: William Young <will.young@engineerbetter.com>
Signed-off-by: James Cleveland <james.cleveland@engineerbetter.com>
Signed-off-by: Lilly Daniell <lilly.daniell@engineerbetter.com>
Signed-off-by: Adrienne Galloway <adrienne.galloway@engineerbetter.com>
Signed-off-by: Marcus Dantas <marcus.dantas@engineerbetter.com>
Signed-off-by: Nick Ruffles <nick.ruffles@engineerbetter.com>
Co-authored-by: Pedro Parra Ortega <pedro.parraortega@enreach.com>
Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
2022-12-05 21:58:29 +01:00