1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Commit graph

149 commits

Author SHA1 Message Date
rodrmartinez
39038b03c8 enforce that exactly one auth property is used 2022-02-22 15:45:45 -03:00
rodrmartinez
0392777965 Merge branch 'main' into feature/kubernetes-provider 2022-02-22 14:57:50 -03:00
Moritz Johner
b0de9a1196 chore: bump chart version
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-02-22 10:41:17 +01:00
Gustavo Carvalho
f9fd1a8c52 bump version to 0.4.3 2022-02-18 09:29:53 -03:00
rodrmartinez
7c4a17a9c3 Merge branch 'main' into feature/kubernetes-provider 2022-02-17 15:38:45 -03:00
rodrmartinez
86d7710727 changing kubernetes api struct 2022-02-17 14:45:43 -03:00
Gustavo Carvalho
c0ed7de5f7 Adding status information to kubectl get css
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-02-17 13:13:59 -03:00
paul-the-alien[bot]
86aedda434
Merge pull request #701 from external-secrets/feature/template-string-interface
feat: implement template engine v2
2022-02-16 17:16:24 +00:00
Gustavo Carvalho
ff62a47d47 Bumping chart version to v0.4.2
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-02-13 09:16:41 -03:00
Moritz Johner
54e68399ec feat: implement template engine v2
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-02-11 08:26:31 +01:00
paul-the-alien[bot]
027f28ec97
Merge pull request #700 from EladGabay/elad/oci-secret-by-name
oracle vault: Use instance principal if auth is empty
2022-02-10 10:34:40 +00:00
Alexander Huck
2bbc033699
fix: add port name to deployment (#697)
Co-authored-by: Alexander Huck <alexander.huck@inovex.de>
Co-authored-by: Alberto Llamas <albertollamaso@gmail.com>
2022-02-07 20:20:01 +01:00
Elad Gabay
fe416890b1 oracle vault: Use instance principal if auth is empty
Currently the oracle vault's secretstore uses a specific user credentials.
This commit introduce a new way to access the vault, using the instance principal.

All user's details moved to "auth" section in the OracleProvider which now is optional.
If "auth" is empty, by default, we use the instance principal, otherwise if specified user's auth details, we use them.

In addition:
- Fixed the fingerprint secret reference which until now used the privatekey secret instead of its reference.
- Bump OCI SDK version.
2022-02-07 18:38:10 +02:00
Lucas Severo Alves
6630ab7494
Initial draft of reporter (#466)
* Initial draft of reporter

* Test out reporter in AWS provider

* trying out different events approach

* feat: implement store reconciler and events

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: add validate() method to provider interface

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: use static requeue interval in store ctrl

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Co-authored-by: Mircea Cosbuc <mircea.cosbuc@container-solutions.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
2022-02-07 11:42:18 +01:00
Lucas Severo Alves
4c5f9ae763 chore: bump version 0.4.1
Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com>
2022-02-02 20:22:10 +01:00
Docs
9fbb6d22b0 Making reviewable
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-02-02 15:31:56 -03:00
Lucas Severo Alves
0e19d00c8d chore: bump chart to v0.4.0 2022-02-02 17:56:22 +01:00
paul-the-alien[bot]
5060619826
Merge pull request #614 from external-secrets/fix/docs
Improves Documentation. Removes controller reference
2022-02-01 19:38:32 +00:00
Moritz Johner
fe1cb8bc69 feat(provider): implement fake provider
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2022-02-01 11:18:43 +01:00
rodrmartinez
fad68e163a Update CRDs 2022-01-26 15:27:59 -03:00
rodrmartinez
b6b74350d5 Creates Kubernetes Provider secretstore 2022-01-25 17:11:12 -03:00
Gustavo Carvalho
d694bb4b9b Added make reviewable
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-01-25 09:39:37 -03:00
Gustavo Carvalho
b95d82dc39 Fixing trailing whitespace
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-01-25 09:24:00 -03:00
Gustavo Carvalho
7df28de2d8 Merge branch 'main' into fix/docs 2022-01-25 09:15:07 -03:00
Gustavo Carvalho
33fb42df53 Changed Dev guide
Signed-off-by: Gustavo Carvalho <gustavo.carvalho@container-solutions.com>
2022-01-25 08:21:09 -03:00
Marc Billow
0753da1cbd Support for eventual consistency in Vault Enterprise 2022-01-19 16:25:01 -06:00
Moritz Johner
40ff991e17 fix: remove support for v1beta1 crds 2022-01-17 21:44:33 +01:00
Lucas Severo Alves
16948ed572
Merge pull request #596 from EladGabay/elad/oci-secret-by-name
OCI Vault: Get secret by name from a specific Vault
2022-01-16 17:20:46 +00:00
Elad Gabay
f50438353e oracle: Add Vault OCID to provider 2022-01-16 12:05:58 +02:00
Elad Gabay
137ce182c1 oracle: Fix provider fields docs 2022-01-16 12:02:56 +02:00
paul-the-alien[bot]
4c6b6a1e84
Merge pull request #525 from HanseMerkur/vault_optional_path
Optional path for Vault SecretStore
2022-01-14 19:33:29 +00:00
paul-the-alien[bot]
44d4cf061b
Merge pull request #559 from willemm/feat/generic_webhook
Add generic webhook provider
2022-01-11 15:50:05 +00:00
paul-the-alien[bot]
be78d56708
Merge pull request #567 from brentspector/feat/ldap-auth-path
Add Path Parameter to LDAP and JWT/OIDC Hashicorp Vault Auth
2022-01-10 13:11:10 +00:00
Lennart Weller
f7f521317e add generated files 2022-01-10 10:12:17 +01:00
Lucas Severo Alves
395fee02b3 chore: bump chart to 0.3.11 2022-01-06 15:08:43 +01:00
Brent Spector
26f9be4fb1 add path to jwt vault auth 2022-01-05 15:22:00 -08:00
Brent Spector
561bd3ae56 Add support for mount path in ldap auth 2022-01-05 14:54:50 -08:00
Willem Monsuwe
d04508e974 Added generic webhook provider
This provider allows a secretstore with a generic url (templated)
which will be called with a defined method, headers (templated)
and optional body (also templated)
The response can be parsed out with a jsonPath expression
2021-12-29 10:53:29 +01:00
Lucas Severo Alves
fc4eedfd63
Merge pull request #427 from jack-evans/concurrency
add concurrent flag to allow more reconciles at the same time
2021-12-27 11:10:45 +01:00
Jack Evans
5e74da3342
add specific concurrent option to helm chart 2021-12-17 15:37:38 +00:00
Moritz Johner
80fac0f697 feat: add gcp workload identity via SA
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2021-12-17 12:20:12 +01:00
paul-the-alien[bot]
78d046b712
Merge pull request #530 from ADustyOldMuffin/add-docs-and-fix-ca-vault
Add documentation for CAProvider namespace and fix issue with SecretStore
2021-12-16 19:44:24 +00:00
Vladimir Fedin
c351efcc15
Add ability provide CA for Yandex' Lockbox provider (#487)
* Add ability provide CA for Yandex' Lockbox provider

* Add tests for getting CA from secrets at Lockbox provider

* fixup! Add tests for getting CA from secrets at Lockbox provider

Co-authored-by: Vladimir Fedin <vladimirfedin@yandex-team.ru>
2021-12-16 20:16:23 +01:00
beastob
67991140e9 Add annotations to Deployment
Signed-off-by: beastob <beastob.mark1@gmail.com>
2021-12-15 23:46:33 +08:00
Moritz Johner
57191a4726 chore: bump chart 0.3.10 2021-12-15 10:24:52 +01:00
Daniel Hix
d53b3df7f8 Remove namespace requirement for secret store and require for cluster secret store 2021-12-13 17:07:32 -06:00
Daniel Hix
082cee230f Merge branch 'main' into ibm-enable-retries 2021-12-13 13:27:57 -06:00
paul-the-alien[bot]
1e9ba0ceb5
Merge pull request #514 from vazul/azure_managed_identity
Supporting Managed Identity authentication for Azure Keyvault
2021-12-07 08:45:26 +00:00
Lucas Severo Alves
81eaee7ce0 chore: bump chart 0.3.9 2021-12-06 14:50:30 +01:00
Laszlo Varadi
a976e32831 Supporting Managed Identity authentication for Azure Keyvault 2021-12-06 10:26:34 +01:00