mirror of
https://github.com/external-secrets/external-secrets.git
synced 2024-12-14 11:57:59 +00:00
cf7e3832ae
* feat(azure): implement workload identity Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Henning Eggers <henning.eggers@inovex.de>
20 lines
565 B
YAML
20 lines
565 B
YAML
apiVersion: v1
|
|
kind: ServiceAccount
|
|
metadata:
|
|
# this service account was created by azwi
|
|
name: workload-identity-sa
|
|
annotations:
|
|
azure.workload.identity/client-id: 7d8cdf74-xxxx-xxxx-xxxx-274d963d358b
|
|
azure.workload.identity/tenant-id: 5a02a20e-xxxx-xxxx-xxxx-0ad5b634c5d8
|
|
---
|
|
apiVersion: external-secrets.io/v1beta1
|
|
kind: SecretStore
|
|
metadata:
|
|
name: example-secret-store
|
|
spec:
|
|
provider:
|
|
azurekv:
|
|
authType: WorkloadIdentity
|
|
vaultUrl: "https://xx-xxxx-xx.vault.azure.net"
|
|
serviceAccountRef:
|
|
name: workload-identity-sa
|