1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.
Find a file
Thibault Gérondal 97a51b50f4
fix: chart: update cert-manager cert. duration (#2986)
Update cert-manager certificate duration to 1 year in the Helm chart.

This commit resolves a timing issue in the external-secrets Helm chart,
where the default certificate duration was previously not explicitly
set. This lack of specification led to conflicts with the cert-manager's
lookahead interval. By setting the `webhook.certManager.cert.duration`
to "8760h" (one year), we ensure that cert-manager will renew the
certificate before the external-secrets webhook starts to report issues,
and restarts, due to the certificate nearing expiration (as per the
lookahead interval).

This solution has been discussed in
external-secrets/external-secrets#2519.

Signed-off-by: Thibault Gérondal <tgerondal@emasphere.com>
2023-12-27 18:33:18 +01:00
.github fix: do not error if helm chart version already exists (#2974) 2023-12-23 22:30:03 +01:00
apis feat: add templating to PushSecret (#2926) 2023-12-22 21:45:34 +01:00
assets chore: add pento to sponsors 2022-04-29 20:58:09 +02:00
cmd feat: fix cert-controller readiness probe (#2857) 2023-11-07 09:51:27 +01:00
config/crds/bases feat: add templating to PushSecret (#2926) 2023-12-22 21:45:34 +01:00
deploy fix: chart: update cert-manager cert. duration (#2986) 2023-12-27 18:33:18 +01:00
design feat: add PushSecret generator design (#2665) 2023-11-22 21:45:55 +00:00
docs fix: bump kubernetes version support (#2981) 2023-12-25 13:53:10 +02:00
e2e update dependencies (#2978) 2023-12-25 12:31:26 +01:00
hack docs: mention auth-delegator role in vault provider (#2734) 2023-10-13 15:50:40 +02:00
overrides Using new syntax for overrides 2022-02-01 15:41:50 -03:00
pkg feat: add templating to PushSecret (#2926) 2023-12-22 21:45:34 +01:00
terraform feat: add AKS e2e managed (#2811) 2023-10-29 21:51:39 +01:00
.clomonitor.yml feat: attach sbom/provenance files to GH release, fix clomonitor (#1656) 2022-10-27 08:59:19 +02:00
.dockerignore Add standalone Dockerfile (#1328) 2022-07-12 05:55:22 -03:00
.editorconfig cleanup: add lint and editorconfig 2020-12-21 14:38:48 -05:00
.gitignore Add Conjur provider (#2412) 2023-06-21 11:17:00 +02:00
.golangci.yaml feat(fake): deprecate ValueMap to use Value instead (#2884) 2023-12-02 06:57:48 +09:00
ADOPTERS.md Add Codefresh as an adopter. (#2856) 2023-11-06 19:25:03 +01:00
changelog.json feat: helm release workflow 2021-05-03 22:12:39 +02:00
CNAME Create CNAME 2021-03-05 18:26:07 +01:00
CONTRIBUTING.md Add CONTRIBUTING.md file (#2925) 2023-12-04 21:43:05 +01:00
Dockerfile chore: replace alpine by distroless 2021-12-06 14:17:24 +01:00
Dockerfile.standalone chore(deps): bump golang from 1.21.4-alpine to 1.21.5-alpine (#2944) 2023-12-11 09:50:38 +01:00
Dockerfile.ubi chore: bump dependencies (#1667) 2022-10-25 22:42:34 +02:00
go.mod update dependencies (#2978) 2023-12-25 12:31:26 +01:00
go.sum update dependencies (#2978) 2023-12-25 12:31:26 +01:00
GOVERNANCE.md Update documentation to add CyberArk Conjur provider (#2473) 2023-07-07 19:17:50 +02:00
LICENSE initial commit 2020-11-19 16:34:16 +01:00
main.go fix: aws parameter store json decode, bump go 1.19 (#1525) 2022-09-06 19:46:36 +02:00
MAINTAINERS.md Propolsal for MAINTAINERS.md and GOVERNANCE.md (#1607) 2022-10-25 22:51:52 +02:00
Makefile feat: introduce tilt into the development process (#2966) 2023-12-21 22:58:31 +01:00
PROJECT feat: implement ClusterExternalSecret (#542) 2022-03-20 09:32:27 +01:00
README.md docs: Update contact email (#2948) (#2949) 2023-12-14 13:35:39 +01:00
SECURITY.md docs: Update contact email (#2948) (#2949) 2023-12-14 13:35:39 +01:00
tilt.debug.dockerfile chore(deps): bump golang from 1.20.1 to 1.21.5 (#2976) 2023-12-25 13:51:25 +01:00
tilt.dockerfile feat: introduce tilt into the development process (#2966) 2023-12-21 22:58:31 +01:00
Tiltfile feat: introduce tilt into the development process (#2966) 2023-12-21 22:58:31 +01:00
tools.go Feature/push secret (#1315) 2022-11-29 16:04:46 -03:00

external-secrets

External Secrets

ci CII Best Practices Go Report Card FOSSA Status Artifact Hub operatorhub.io

External Secrets Operator is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault, IBM Cloud Secrets Manager, Akeyless, CyberArk Conjur and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret.

Multiple people and organizations are joining efforts to create a single External Secrets solution based on existing projects. If you are curious about the origins of this project, check out this issue and this PR.

Documentation

External Secrets Operator guides and reference documentation is available at external-secrets.io. Also see our stability and support policy.

Contributing

We welcome and encourage contributions to this project! Please read the Developer and Contribution process guides. Also make sure to check the Code of Conduct and adhere to its guidelines.

Sponsoring

Please consider sponsoring this project, there are many ways you can help us with: engineering time, providing infrastructure, donating money, etc. We are open to cooperations, feel free to approach as and we discuss how this could look like. We can keep your contribution anonymized if that's required (depending on the type of contribution), and anonymous donations are possible inside Opencollective.

Bi-weekly Development Meeting

We host our development meeting every odd wednesday on Jitsi. We run the meeting with alternating times 8:00 PM Berlin Time and 1:00 PM Berlin Time, we'll announce the time in our Kubernetes Slack channel. Meeting notes are recorded on hackmd.

Anyone is welcome to join. Feel free to ask questions, request feedback, raise awareness for an issue, or just say hi. ;)

Security

Please report vulnerabilities by email to cncf-ExternalSecretsOp-maintainers@lists.cncf.io. Also see our SECURITY.md file for details.

software bill of materials

We attach SBOM and provenance file to our GitHub release. Also, they are attached to container images.

Adopters

Please create a PR and add your company or project to our ADOPTERS.md file if you are using our project!

Roadmap

You can find the roadmap in our documentation: https://external-secrets.io/main/contributing/roadmap/

Kicked off by

Sponsored by

License

FOSSA Status