1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Commit graph

2486 commits

Author SHA1 Message Date
Aran Shavit
bfc158aaa0
Fix value name (#2985) 2024-01-03 17:19:32 +01:00
eso-service-account-app[bot]
cbb2c409e4
update dependencies (#2988)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2024-01-02 22:58:12 +01:00
Thibault Gérondal
97a51b50f4
fix: chart: update cert-manager cert. duration (#2986)
Update cert-manager certificate duration to 1 year in the Helm chart.

This commit resolves a timing issue in the external-secrets Helm chart,
where the default certificate duration was previously not explicitly
set. This lack of specification led to conflicts with the cert-manager's
lookahead interval. By setting the `webhook.certManager.cert.duration`
to "8760h" (one year), we ensure that cert-manager will renew the
certificate before the external-secrets webhook starts to report issues,
and restarts, due to the certificate nearing expiration (as per the
lookahead interval).

This solution has been discussed in
external-secrets/external-secrets#2519.

Signed-off-by: Thibault Gérondal <tgerondal@emasphere.com>
2023-12-27 18:33:18 +01:00
dependabot[bot]
921ed35efc
chore(deps): bump golang from 1.20.1 to 1.21.5 (#2976)
Bumps golang from 1.20.1 to 1.21.5.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-25 13:51:25 +01:00
Moritz Johner
47874c0b55
chore: bump 0.9.11 (#2982)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-12-25 14:34:43 +02:00
Moritz Johner
a0c5f7eb51
fix: bump kubernetes version support (#2981)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-12-25 13:53:10 +02:00
eso-service-account-app[bot]
6f21a9ab33
update dependencies (#2978)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2023-12-25 12:31:26 +01:00
Moritz Johner
e9cd99148f
fix: do not error if helm chart version already exists (#2974)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-12-23 22:30:03 +01:00
Nate Kaldor
371b18fd08
do not deploy certController when certManager is enabled by webhook (#2952)
Signed-off-by: kaldorn <nate.kaldor@outreach.io>
2023-12-22 22:23:12 +01:00
Gergely Brautigam
d6e24a82bd
feat: add templating to PushSecret (#2926)
* feat: add templating to PushSecret

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* adding unit tests around templating basic concepts and verifying output

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* extracting some of the common functions of the parser

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* remove some more duplication

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* removed commented out code segment

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* added documentation for templating feature

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* simplified the templating for annotations and labels

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

---------

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-12-22 21:45:34 +01:00
fadecore
9130719b20
fix processpushsecret activation (#2968)
make it possible do deactivate processpushsecret when installing namespaced

Signed-off-by: fadecore <outbreak86@hotmail.com>
2023-12-21 23:03:26 +01:00
Gergely Brautigam
0bbfb1b954
feat: introduce tilt into the development process (#2966)
Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-12-21 22:58:31 +01:00
Jongwoo Han
fa591d7674
chore: replace deprecated command with environment file (#2970)
Signed-off-by: Jongwoo Han <jongwooo.han@gmail.com>
2023-12-21 22:30:54 +01:00
Shanti G
fb762b57b3
minor changes: extension of PR #2950 (#2967) 2023-12-21 08:38:08 +02:00
Nitzan Nissim
b0bdef20b5
Add support for IBM Cloud Service Credentials secret type (#2950) 2023-12-21 08:21:02 +02:00
eso-service-account-app[bot]
7e23fbebc4
update dependencies (#2960)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2023-12-18 22:08:16 +01:00
Adrián Robotka
25b217a60f
Helm pod spec extra (#2930)
* extra pod spec option added to helm deployment

Signed-off-by: Adrian Robotka <robotka.adrian@gmail.com>

* output of make helm.docs

Signed-off-by: Adrian Robotka <robotka.adrian@gmail.com>

---------

Signed-off-by: Adrian Robotka <robotka.adrian@gmail.com>
2023-12-18 14:33:30 +01:00
Roger
97ffefb5a5
bump 0.9.10 (#2958)
Signed-off-by: rogertuma <tumaroger@gmail.com>
2023-12-16 14:49:37 -03:00
Rajath Reghunath
632071d954
docs: Update contact email (#2948) (#2949) 2023-12-14 13:35:39 +01:00
eso-service-account-app[bot]
41e9ba849b
update dependencies (#2946)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2023-12-11 22:49:44 +01:00
dependabot[bot]
b833cd44ac
chore(deps): bump golang from 1.21.4-alpine to 1.21.5-alpine (#2944)
Bumps golang from 1.21.4-alpine to 1.21.5-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:50:38 +01:00
dependabot[bot]
9b41c931df
chore(deps): bump actions/setup-python from 4.7.1 to 5.0.0 (#2941)
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.7.1 to 5.0.0.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4.7.1...v5.0.0)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:41:47 +01:00
dependabot[bot]
d53cfbad06
chore(deps): bump actions/stale from 8 to 9 (#2942)
Bumps [actions/stale](https://github.com/actions/stale) from 8 to 9.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v8...v9)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:41:00 +01:00
dependabot[bot]
0fe7bba692
chore(deps): bump actions/setup-go from 4 to 5 (#2943)
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:40:29 +01:00
Florent Viel
88da2f3199
feat: add custom user agent to scaleway provider (#2938)
Signed-off-by: Florent Viel <fviel@scaleway.com>
2023-12-09 16:25:29 +09:00
Leonardo
bf1793488b
fix: update Helm snapshot so 'make helm.test' stops failing (#2935)
Signed-off-by: Leonardo M. Miranda <leonardomichalskim@gmail.com>
2023-12-08 08:26:39 +09:00
Victor Santos
96233b759a
docs(alibaba): add access key authentication (#2934)
Signed-off-by: Victor Santos <vsantos.py@gmail.com>
2023-12-07 17:43:03 +01:00
Shlomo Zalman Heigh
14fb8597db
Add CONTRIBUTING.md file (#2925)
Signed-off-by: Shlomo Heigh <shlomo.heigh@cyberark.com>
2023-12-04 21:43:05 +01:00
eso-service-account-app[bot]
5967b70653
update dependencies (#2922)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2023-12-04 19:16:33 +01:00
Kiyofumi Sano
2f043ecaed
Signed-off-by: Kiyo510 <miraishida00510@gmail.com> (#2919)
typo: ref:#2917 Fix typo in ExtermalSecretRewriteTransform
2023-12-02 14:53:11 +01:00
Victor Santos
3599384660
feat(fake): deprecate ValueMap to use Value instead (#2884) 2023-12-02 06:57:48 +09:00
Tal Asulin
2441ad547b
Feat/Adding support for PushSecret using HashiCorp Vault KV v1 (#2879)
* feat: init pushsecret support for vault kv1

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* feat: update delete secret to support vault kv1

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* test: adding unit tests for deletesecret for vault v1 coverage

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* docs: adding a note for describing the potential risk of using kv1 with pushsecret

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* feat: removing white spaces

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* feat: removing white spaces

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* chore: reverting buildMetadataPath changes as they are not called from v1 logic

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* feat: add custom metadata to vault v1 secrets

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* docs: adjusting documentation for supporting vault kv v1

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* docs: adjusting documentation for supporting vault kv v1

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

* Update docs/provider/hashicorp-vault.md

Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
Signed-off-by: Tal Asulin <tallin900@gmail.com>
Signed-off-by: talasulin <tal.asulin@appsflyer.comn>

---------

Signed-off-by: talasulin <tal.asulin@appsflyer.comn>
Signed-off-by: Tal Asulin <tallin900@gmail.com>
Co-authored-by: talasulin <tal.asulin@appsflyer.comn>
Co-authored-by: tal-asulin <tal-asulin@users.noreply.github.com>
Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com>
2023-11-30 04:51:30 -03:00
Moritz Johner
2b2661ebc2
fix: use service management endpoint for ACR when using WI (#2913)
The `scope` parameter used to be the ACR url foobar.azurecr.io, but
this stopped working. Turns out that you need to use the management
endpoint as `scope` in order to authenticate with ACR.

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-11-30 00:02:28 +01:00
Sebastián Gómez
15b68cc722
chore: remove references to Prometheus in Helm chart (#2814)
Remove references to deprecated prometheus values. 

Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-11-29 23:46:55 +01:00
Petter Abrahamsson
eea369578d
fix: Small typo in the 'templateFrom' guide (#2912)
Signed-off-by: Petter Abrahamsson <pabraham@redhat.com>
2023-11-29 21:48:08 +01:00
eso-service-account-app[bot]
c2957067fc
chore: update dependencies (#2903)
* update dependencies

Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>

* chore: bump deps

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

---------

Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
2023-11-29 20:45:52 +01:00
Ryan Arnold
8fd952c6e7
Docs: Add details on how to use FilterPEM function (#2893)
* Docs - add note clarifying how to use filterpem for future readers

Signed-off-by: arnoldrw <arnold.rw@pg.com>

* Update docs/guides/templating.md

Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
Signed-off-by: Ryan Arnold <51235300+arnoldrw@users.noreply.github.com>

---------

Signed-off-by: arnoldrw <arnold.rw@pg.com>
Signed-off-by: Ryan Arnold <51235300+arnoldrw@users.noreply.github.com>
Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-11-29 20:37:13 +01:00
Shuhei Kitagawa
632f1bba28
Stop deleting all the Secret metadata (#2900)
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2023-11-28 06:22:41 -03:00
Mateusz Łoskot
4acf82f23c
docs: Recommend use of Workload Identity for Azure Key Vault (#2906)
* docs: Recommend use of Workload Identity for Azure Key Vault

Mentions AAD Pod Identity is deprecated and updates overview
of supported authentication modes for Azure Key Vault.

This removes "should use aad-pod-identity" wording, see
https://github.com/external-secrets/external-secrets/discussions/2901

Signed-off-by: Mateusz Łoskot <mateusz@loskot.net>

* docs: Fix missing link to Multi-Tenancy Guide

Signed-off-by: Mateusz Łoskot <mateusz@loskot.net>

* docs: Fix typos

Capitalise own names.

Signed-off-by: Mateusz Łoskot <mateusz@loskot.net>

---------

Signed-off-by: Mateusz Łoskot <mateusz@loskot.net>
2023-11-27 14:15:05 -03:00
Moritz Johner
c5fa8d81a6
fix: webhook support more types when parsing response (#2899)
* fix: support more types in webhook response

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: properly decode json

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* Update pkg/provider/webhook/webhook.go

Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>

* Update pkg/provider/webhook/webhook.go

Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>

* fix: expose errors

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

---------

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>
Co-authored-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-11-25 08:53:30 +01:00
Moritz Johner
74897535d2
feat: add PushSecret generator design (#2665)
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-11-22 21:45:55 +00:00
Gergely Brautigam
3fbe318582
feat: allow pushing the whole secret to the provider (#2862)
* feat: allow pushing the whole secret to the provider

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* add documentation about pushing a whole secret

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* disabling this feature for the rest of the providers for now

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

* added scenario for update with existing property

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>

---------

Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-11-21 22:00:21 +01:00
eso-service-account-app[bot]
431aef844d
update dependencies (#2890)
Signed-off-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
Co-authored-by: External Secrets Operator <ExternalSecretsOperator@users.noreply.github.com>
2023-11-20 11:43:16 +01:00
dependabot[bot]
ae258f0dcd
chore(deps): bump actions/github-script from 6 to 7 (#2889)
Bumps [actions/github-script](https://github.com/actions/github-script) from 6 to 7.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-20 10:08:26 +01:00
Lakhan Jindam
325f36e47d
add validations for the remaining enum values (#2860)
* add validations for the remaining enum values

Signed-off-by: lakhan jindam <lakhanj569@gmail.com>

* generate crd configs using make reviewable cmd and address review comments

Signed-off-by: lakhan jindam <lakhanj569@gmail.com>

---------

Signed-off-by: lakhan jindam <lakhanj569@gmail.com>
2023-11-18 19:55:39 -03:00
Victor Santos
6458048c62
docs: fix deprecation policy typo (#2875)
Signed-off-by: Victor Santos <vsantos.py@gmail.com>
2023-11-15 13:42:35 +01:00
visokoo
2e4067ed3f
docs: remove additional space in dockercreds example that causes the last curly brace to be removed (#2877)
Signed-off-by: Vivian Ta <ta.vivian@gmail.com>
2023-11-15 13:41:47 +01:00
Yonatan Koren
d42e19dc70
feat: AWS SecretsManager Config (allow ForceDeleteWithoutRecovery for PushSecret) (#2854)
* Add secretsmanager config.

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>

* Fix unit tests.

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>

* Update docs, fix validation, tests.

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>

* Fix grammatical error in attribute descriptions.

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>

* Improve API docs for SecretsManager.

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>

---------

Signed-off-by: Yonatan Koren <10080107+korenyoni@users.noreply.github.com>
2023-11-14 18:44:22 -03:00
dependabot[bot]
c648b19f79
chore(deps): bump golang from 1.21.3-alpine to 1.21.4-alpine (#2870)
Bumps golang from 1.21.3-alpine to 1.21.4-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-13 21:02:28 +01:00
Roger
80f780a8fa
bump 0.9.9 (#2872)
Signed-off-by: rogertuma <tumaroger@gmail.com>
2023-11-13 16:05:17 -03:00