mirror of
https://github.com/external-secrets/external-secrets.git
synced 2024-12-14 11:57:59 +00:00
d9eaeb40dc
* Add JWT Auth to Conjur Provider Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Update docs for Cyberark Conjur Provider Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Update test suite to cover new functionality Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Run make reviewable Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Set MinVersion for tls.Config to satisfy linting Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Move ca bundle config example to a yaml snippet Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * fix: consolidate naming Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: consolidate naming Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * docs: make it a working example Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * Remove JWT expiration handling logic Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> * Run make fmt Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> --------- Signed-off-by: Kieran Bristow <kieran.bristow@absa.africa> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
20 lines
655 B
YAML
20 lines
655 B
YAML
....
|
|
spec:
|
|
provider:
|
|
conjur:
|
|
# Service URL
|
|
url: https://myapi.conjur.org
|
|
|
|
# [OPTIONAL] base64 encoded string of certificate
|
|
caBundle: "<base64 encoded cabundle>"
|
|
|
|
# [OPTIONAL] caProvider:
|
|
# Instead of caBundle you can also specify a caProvider
|
|
# this will retrieve the cert from a Secret or ConfigMap
|
|
caProvider:
|
|
type: "Secret" # Can be Secret or ConfigMap
|
|
name: "<name of secret or configmap>"
|
|
key: "<key inside secret or configmap>"
|
|
# namespace is mandatory for ClusterSecretStore and not relevant for SecretStore
|
|
namespace: "my-cert-secret-namespace"
|
|
....
|