kubernetes/k8s-peterg/external-secrets-operator/clustersecrets.yaml

---
apiVersion: external-secrets.io/v1
kind: ClusterExternalSecret
metadata:
  name: tls-wildcard-peterg-nl
spec:
  externalSecretName: tls-wildcard-peterg-nl
  namespaceSelectors:
    - matchLabels:
        kubernetes.io/metadata.name: kube-system
  externalSecretSpec:
    secretStoreRef:
      name: vault-wheatley
      kind: ClusterSecretStore
    target:
      name: tls-wildcard-peterg-nl
      template:
        type: kubernetes.io/tls
        data:
          tls.crt: "{{ .crt }}"
          tls.key: "{{ .key }}"
    data:
      - secretKey: crt
        remoteRef:
          key: secrets/provisioned/tls-wildcard-peterg-nl
          property: crt
      - secretKey: key
        remoteRef:
          key: secrets/provisioned/tls-wildcard-peterg-nl
          property: key
feat(k8s-peterg): Enable HTTPS/TLS 2025-11-10 15:33:29 +01:00			`---`
			`apiVersion: external-secrets.io/v1`
			`kind: ClusterExternalSecret`
			`metadata:`
			`name: tls-wildcard-peterg-nl`
			`spec:`
			`externalSecretName: tls-wildcard-peterg-nl`
fix(k8s-peterg): Ensure TLS certificate is parsed correctly 2025-11-10 16:08:39 +01:00			`namespaceSelectors:`
			`- matchLabels:`
			`kubernetes.io/metadata.name: kube-system`
feat(k8s-peterg): Enable HTTPS/TLS 2025-11-10 15:33:29 +01:00			`externalSecretSpec:`
			`secretStoreRef:`
chore(k8s-peterg): Switch to Vault secretstore 2026-01-27 16:15:13 +01:00			`name: vault-wheatley`
feat(k8s-peterg): Enable HTTPS/TLS 2025-11-10 15:33:29 +01:00			`kind: ClusterSecretStore`
			`target:`
			`name: tls-wildcard-peterg-nl`
			`template:`
			`type: kubernetes.io/tls`
			`data:`
			`tls.crt: "{{ .crt }}"`
			`tls.key: "{{ .key }}"`
			`data:`
			`- secretKey: crt`
			`remoteRef:`
chore(k8s-peterg): Switch to Vault secretstore 2026-01-27 16:15:13 +01:00			`key: secrets/provisioned/tls-wildcard-peterg-nl`
			`property: crt`
			`- secretKey: key`
			`remoteRef:`
			`key: secrets/provisioned/tls-wildcard-peterg-nl`
			`property: key`