Argo/MetaObjects/authentik-keys.yml
Simen R??stvik 79e41b00c3 pw
2022-12-17 03:12:52 +01:00

50 lines
1.0 KiB
YAML

apiVersion: external-secrets.io/v1alpha1
kind: SecretStore
metadata:
name: ext-authentik-backend
namespace: authentik
spec:
provider:
vault:
server: "http://vault.vault:8200"
path: "kv"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "kube-role"
---
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: ext-authentik
namespace: authentik
spec:
secretStoreRef:
name: ext-authentik-backend
kind: SecretStore
target:
name: authentik-secret
data:
- secretKey: AUTHENTIK_SECRET_KEY
remoteRef:
key: authentik/authentik
property: secret_key
---
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: ext-authentik-psql
namespace: authentik
spec:
secretStoreRef:
name: ext-authentik-backend
kind: SecretStore
target:
name: postgres-secret
data:
- secretKey: password
remoteRef:
key: authentik/postgres
property: password