Argo/MetaObjects/authentik-keys.yml

50 lines
1.0 KiB
YAML
Raw Normal View History

2022-12-15 14:59:38 +01:00
apiVersion: external-secrets.io/v1alpha1
kind: SecretStore
metadata:
name: ext-authentik-backend
namespace: authentik
spec:
provider:
vault:
server: "http://vault.vault:8200"
path: "kv"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "kube-role"
---
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: ext-authentik
namespace: authentik
spec:
secretStoreRef:
name: ext-authentik-backend
kind: SecretStore
target:
name: authentik-secret
data:
- secretKey: AUTHENTIK_SECRET_KEY
remoteRef:
key: authentik/authentik
property: secret_key
2022-12-15 15:44:32 +01:00
---
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: ext-authentik-psql
namespace: authentik
spec:
secretStoreRef:
name: ext-authentik-backend
kind: SecretStore
target:
name: postgres-secret
data:
- secretKey: password
remoteRef:
key: authentik/postgres
property: password