external-secrets

mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-15 17:51:01 +00:00

Author	SHA1	Message	Date
Gustavo Fernandes de Carvalho	7bf0cf2e79	chore: updates default oci (#3903 ) * chore: updates default oci Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * fix: make e2e use old repo Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2024-09-13 06:39:48 -03:00
Gergely Brautigam	a5ddd97c21	chore: update go version of the project to 1.23 (#3829 ) * chore: update go version of the project to 1.23 Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * fixed an absurd amount of linter issues Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> --------- Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-08-26 11:10:58 +02:00
Gergely Brautigam	87c09c6046	fix: e2e installation of ESO needs to update dependencies first (#3635 ) Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-06-28 14:42:17 +02:00
Shuhei Kitagawa	43a7a16baf	Update Go and golangci-lint version (#3396 ) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2024-04-25 06:36:11 -03:00
Shlomo Zalman Heigh	1d3209da59	Conjur E2E Tests for K8s JWT Authentication (#3217 ) Signed-off-by: Shlomo Heigh <shlomo.heigh@cyberark.com>	2024-03-01 17:36:19 +01:00
Shlomo Zalman Heigh	8922003ab9	Conjur E2E Tests for API Key Authentication (#3120 ) Signed-off-by: Shlomo Heigh <shlomo.heigh@cyberark.com>	2024-02-22 09:42:58 +09:00
Gergely Brautigam	e726087851	feat: add push secret to e2e tests (#3017 ) * feat: add push secret to e2e tests Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * finally, a fully working example for an e2e flow with push secret Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> * fix value field duplication issue Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com> --------- Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>	2024-02-12 16:44:45 +01:00
Rodrigo Fior Kuntzer	31cecaa62b	feat: add support for Hashicorp Vault mTLS (#3018 ) * feat: adding support for mTLS to the Vault provider Signed-off-by: Rodrigo Fior Kuntzer <rodrigo@miro.com>	2024-01-19 00:43:28 +01:00
Gustavo Fernandes de Carvalho	6319977e63	Fixing when orphaned secret deletion when target.Name is not set (#2609 ) * Fixing when orphaned secret deletion when target.Name is not set Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * Linting Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * Fixing e2e tests Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-08-15 07:26:00 -03:00
Moritz Johner	54664b43b1	chore: update dependencies (#2348 ) * chore: update dependencies Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: get rid of argo dependency to be independent of their k8s versioning Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-05-31 09:36:22 +02:00
azert9	f181500e98	Feature/scaleway provider (#2086 ) * wip: basic structure of scaleway provider Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: add some tests for GetAllSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: implement PushSecret Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: improved test fixtures Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: allow finding secrets by project using the path property Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add delete secret method Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * Delete dupplicate of push remote ref test implem Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add capability to use a secret for configuring access token Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: implement GetSecretMap Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: filtering by name and projetc id Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: add test for finding secret by name regexp Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: config validation Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: handle situation where no namespace is specified and we cannot provide a default Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: reference secrets by id or name Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: invalid request caused by pagination handling Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: log the error when failing to access secret version Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: pass context to sdk where missing Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add a cache for reducing AccessSecretVersion() calls Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: use GetSecret with name instead of ListSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: allow using secret name in ExternalSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: use latest_enabled instead of latest Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: optimized PushSecret and improved its test coverage Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: doesConfigDependOnNamespace was always true Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: use new api with refactored name-based endpoints Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * remove useless todo Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * fix: use secret names as key for GetAllSecrets Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: support gjson propery lookup Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: e2e tests Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: e2e test using secret to store api key Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: cleanup left over resources on the secret manager before each e2e run Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * doc: add doc for scaleway provider Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * refacto: fix lint issues Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * test: cleanup code in e2e was commented Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: the previous version is disabled when we push to a secret Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * doc: add comments to ScalewayProvider struct to point to console and doc Signed-off-by: Julien Loctaux <no.mail@jloc.fr> * feat: add missing e2e env vars for scaleway Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * docs: add scaleway to support/stability table Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Julien Loctaux <no.mail@jloc.fr> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-03-16 01:03:52 +01:00
Gustavo Fernandes de Carvalho	a1f8a8adc7	🐛 Fixing PushSecret CRD generation (#1967 ) * Fixing PushSecret CRD generation Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * fix: increase hashicorp vault cache size to prevent eviction Also remove tiny cache size from e2e tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> --------- Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>	2023-02-02 00:30:10 +01:00
Moritz Johner	5ef3b23a68	feat: make cache generic, refactor feature flags (#1640 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2023-01-19 17:25:47 +01:00
Gustavo Fernandes de Carvalho	0bd9ea4dbd	✨ Templates from string (#1748 ) * Adds templates from string Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>	2023-01-03 19:02:43 -03:00
Gustavo Fernandes de Carvalho	0cb799b5cf	✨Feature/push secret (#1315 ) Introduces Push Secret feature with implementations for the following providers: * GCP Secret Manager * AWS Secrets Manager * AWS Parameter Store * Hashicorp Vault KV Signed-off-by: Dominic Meddick <dominic.meddick@engineerbetter.com> Signed-off-by: Amr Fawzy <amr.fawzy@container-solutions.com> Signed-off-by: William Young <will.young@engineerbetter.com> Signed-off-by: James Cleveland <james.cleveland@engineerbetter.com> Signed-off-by: Lilly Daniell <lilly.daniell@engineerbetter.com> Signed-off-by: Adrienne Galloway <adrienne.galloway@engineerbetter.com> Signed-off-by: Marcus Dantas <marcus.dantas@engineerbetter.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Nick Ruffles <nick.ruffles@engineerbetter.com>	2022-11-29 16:04:46 -03:00
Moritz Johner	dabfa5a589	Feature: initial generator implementation + Github Actions OIDC/AWS (#1539 ) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2022-10-29 20:15:50 +02:00
Moritz Johner	1672dfd556	feat: test UBI image build (#1574 ) * feat: test UBI image build Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-Authored-By: Idan Adar <iadar@il.ibm.com> Co-Authored-By: mrgadgil	2022-10-06 19:14:13 +02:00
Moritz Johner	8e0a5b96c6	ArgoCD & Flux e2e suites (#1041 ) * feat: add gitops suite Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add flux tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: pin to v1.23 kubectl version to avoid invalid apiVersion issue see: https://github.com/aws/aws-cli/issues/6920 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Revert "fix: pin to v1.23 kubectl version to avoid invalid apiVersion issue" This reverts commit 2f78226cdce1683a0255457b41199d10dd30509f. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-05-23 16:14:21 +02:00
paul-the-alien[bot]	84af221762	Merge pull request #959 from external-secrets/chore/refactor-vault Chore/refactor vault	2022-04-13 13:02:14 +00:00
Gustavo Carvalho	4fcf272ce0	Refactoring vault provider. Removing RawRequest in favor of Logical Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-13 07:13:25 -03:00
Gustavo Carvalho	b5220fa618	Adding some options for webhook deployment: * hostNetwork for webhook pod * FailurePolicy for validatingwebhook definition * Changed webhook port to a configurable value * Defined default value as 9443 Fixes #944 Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-11 15:16:20 -03:00
Moritz Johner	c2bcceb057	feat: implement deletionPolicy (#900 ) * feat: implement deletionPolicy Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com>	2022-04-05 13:38:06 +02:00
Alfred Krohmer	d7022b1bef	feat(vault): add option for JWT backend to authenticate with Kubernetes service account token (#768 )	2022-04-04 21:20:58 +02:00
Gustavo Carvalho	c779ef59e7	Marking v1alpha1 as deprecated. Improving docs and menu order. Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-29 11:21:32 -03:00
Gustavo Carvalho	a2a4effa4a	Adding docs for v1beta1 vs v1alpha1. Added one test for v1alpha1 compatibility Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-29 11:11:07 -03:00
Moritz Johner	56c69a1063	feature: aws getallsecrets (#820 ) * feature: aws getallsecrets Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: e2e test / find by name * feat: add get-by-tags tests, consolidate with existing ones Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add path tests * fix: revert azure * fix: secretsmanager prealloc * feat: aws sm path tests * feat: implement secretsmanager path filter * fix: use low refresh interval due to eventual consistency * revert makefile changes * fix: add path test cases to managed Co-authored-by: Docs <docs@external-secrets.io>	2022-03-24 17:09:32 +01:00
Gustavo Carvalho	bae43b39c4	Adding mutexes only for GCP provider Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-24 06:34:07 -03:00
Daniel Hix	324c7def06	feat: implement ClusterExternalSecret (#542 ) Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>	2022-03-20 09:32:27 +01:00
Gustavo Carvalho	10c3ba355d	Changes e2e test default api to v1beta1. Adds GetAllSecrets test Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-03-09 13:43:37 -03:00
Gustavo Carvalho	40ec693479	Merge branch 'main' into feature/conversion-webhook Fixed conflicts and implemented necessary changes for v1beta1	2022-02-16 16:00:32 -03:00
Gustavo Carvalho	2e6017dd4b	Using cobra commands instead of several binaries Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-15 08:52:52 -03:00
Gustavo Carvalho	23eb831571	Fixing cert-controller image tag Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 19:08:30 -03:00
Gustavo Carvalho	0db78819bb	Fixing lints and adding correct image names in eso.go Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 16:37:32 -03:00
Gustavo Carvalho	c40aebdfba	Adding variables to configure versions of webhook and certcontroller Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>	2022-02-13 15:59:18 -03:00
Moritz Johner	54e68399ec	feat: implement template engine v2 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-02-11 08:26:31 +01:00
Moritz Johner	5d396e1351	chore: test e2e-managed Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-25 08:04:17 +01:00
Moritz Johner	759d241cd9	chore: test e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-24 21:28:37 +01:00
Moritz Johner	ea5689a945	chore: test e2e Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-24 20:23:33 +01:00
Moritz Johner	008268ee00	feat(e2e): implement aws tests, enhance gcp tests Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2022-01-21 23:37:50 +01:00
paul-the-alien[bot]	6acb8852b5	Merge pull request #469 from external-secrets/chore/specific_e2e_setup Initial setup for wi gcp testing	2022-01-14 19:27:54 +00:00
Lucas Severo Alves	e88ec163e0	Add a methods for gcp and aws prep Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>	2022-01-14 20:15:30 +01:00
Brent Spector	f76188026d	proposed fix for JWT tests	2022-01-07 13:09:22 -08:00
Lucas Severo Alves	ae6cadf70c	Use ClusterSecretStore so we set namespace of SA	2021-12-31 11:26:14 +01:00
Lucas Severo Alves	25763fde81	e2e testing for gcp Workload Identity	2021-12-30 22:08:00 +01:00
Lucas Severo Alves	d112e6c67a	Bump jwt module	2021-11-11 14:45:31 +01:00
John Hobbs	3fa562dd14	Silence gocritic lint on e2e test file.	2021-10-27 17:03:39 -05:00
Mateus Oliveira Patrício	67ba8d597b	create const for "RSA PRIVATE KEY"	2021-10-07 09:24:21 -03:00
Mateus Oliveira Patrício	5284aca883	test: create e2e test to SyncWithoutTargetName	2021-09-22 23:57:36 +02:00
Alexander Chernov	280964f84e	fix: dependent kind=secret are not recreated in case of deletion. (#349 ) * chore: whitespace, typos, superflous aliases * fix: deleted child secret is not recreated straight away. * fix: e2e run	2021-09-09 11:14:17 +02:00
Lucas Severo Alves	7fbbb37b59	Merge pull request #320 from spirosoik/feat/iss-289 Add the ability of ESO to reconcile only in scoped namespace	2021-08-24 18:49:50 +02:00

1 2

54 commits