1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.
Find a file
Cameron McAvoy a9c2668e9e
Update rbac.yaml to give the controller "create" permission on leases
The current helm chart does not grant the controller the appropriate "create" permission on leases for leader election to work.
2021-05-03 10:51:43 -05:00
.github feat: add basic e2e test 2021-04-25 15:44:15 +02:00
apis fix: make vault version optional w/ defaults 2021-04-28 18:46:16 +02:00
assets Tidy image 2021-02-10 15:29:46 +01:00
deploy Update rbac.yaml to give the controller "create" permission on leases 2021-05-03 10:51:43 -05:00
design Move crd spec to directory 2021-04-28 10:33:09 -05:00
docs Draft: feat: implement template (#69) 2021-04-23 08:22:23 +02:00
e2e feat: add basic e2e test 2021-04-25 15:44:15 +02:00
hack Add first iteration of custom metrics 2021-04-12 17:07:43 +02:00
pkg Merge pull request #120 from external-secrets/feat/e2e-tests 2021-04-28 15:57:39 +00:00
.editorconfig cleanup: add lint and editorconfig 2020-12-21 14:38:48 -05:00
.gitignore feat: add basic e2e test 2021-04-25 15:44:15 +02:00
.golangci.yaml Draft: feat: implement template (#69) 2021-04-23 08:22:23 +02:00
CNAME Create CNAME 2021-03-05 18:26:07 +01:00
Dockerfile Improve primary CI pipeline and refactor Makefile 2021-02-25 05:01:57 -05:00
go.mod chore(deps): bump github.com/tidwall/gjson from 1.7.4 to 1.7.5 2021-04-26 08:08:19 +00:00
go.sum chore(deps): bump github.com/tidwall/gjson from 1.7.4 to 1.7.5 2021-04-26 08:08:19 +00:00
LICENSE Move crd spec to directory 2021-04-28 10:33:09 -05:00
main.go Cleanup and remove kustomize manifests in favor of Helm chart 2021-04-08 13:56:11 -05:00
Makefile feat: add basic e2e test 2021-04-25 15:44:15 +02:00
PROJECT convert to multi-api 2020-12-29 12:25:08 -05:00
README.md Add CoC and references to it 2021-03-05 16:36:22 +01:00
SECURITY.md feat: security policy & dependabot (#60) 2021-03-17 08:32:32 +01:00
tools.go Cleanup and remove kustomize manifests in favor of Helm chart 2021-04-08 13:56:11 -05:00

External Secrets


The External Secrets Kubernetes operator reads information from a third party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

Multiple people and organizations are joining efforts to create a single External Secrets solution based on existing projects. If you are curious about the origins of this project, check out this issue and this PR.

⚠️ Please bear in mind

While this project is not ready, you might consider using the following:

Installation

Clone this repository:

git clone https://github.com/external-secrets/external-secrets.git

Install the Custom Resource Definitions:

make install

Run the controller against the active Kubernetes cluster context:

make run

Apply the sample resources:

kubectl apply -f config/samples/external-secrets_v1alpha1_secretstore.yaml
kubectl apply -f config/samples/external-secrets_v1alpha1_externalsecret.yaml

We will add more documentation once we have the implementation for the different providers.

Planned Features

  • Support to multiple Provider stores (AWS Secret Manager, GCP Secret Manger, Vault and more) simultaneously.
  • Multiple External Secrets operator instances for different contexts/environments.
  • A custom refresh interval to sync the data from the Providers, syncing your Kubernetes Secrets up to date.
  • Select specific versions of the Provider data.

Contributing

We welcome and encourage contributions to this project! Please read the Developer and Contribution process guides. Also make sure to check the Code of Conduct and adhere to its guidelines.

Kicked off by