chore(eso): Move ExternalSecretsOperator configuration to kustomize-bases

2025-12-14 14:07:51 +01:00 · 2025-12-14 14:07:51 +01:00 · 3ae9b9de5a
commit 3ae9b9de5a
parent 68e1e422fa
6 changed files with 56 additions and 9 deletions
--- a/k8s-peterg/external-secrets-operator/kustomization.yaml
+++ b/k8s-peterg/external-secrets-operator/kustomization.yaml
@ -3,13 +3,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization

 resources:
-  - namespace.yaml
-  - secretstore.yaml
+  - ../../kustomize-bases/external-secrets-operator
  - clustersecrets.yaml
-
-helmCharts:
-  - name: external-secrets
-    repo: https://charts.external-secrets.io
-    namespace: external-secrets
-    releaseName: external-secrets
-    version: 1.0.0
--- a/k8s-wheatley/external-secrets-operator/clustersecrets.yaml
+++ b/k8s-wheatley/external-secrets-operator/clustersecrets.yaml
@ -0,0 +1,34 @@
+---
+apiVersion: external-secrets.io/v1
+kind: ClusterExternalSecret
+metadata:
+  name: tls-wildcard-wheatley-in
+spec:
+  externalSecretName: tls-wildcard-wheatley-in
+  namespaceSelectors:
+    - matchLabels:
+        kubernetes.io/metadata.name: kube-system
+  externalSecretSpec:
+    secretStoreRef:
+      name: 1password-wheatley
+      kind: ClusterSecretStore
+    target:
+      name: tls-wildcard-wheatley-in
+      template:
+        type: kubernetes.io/tls
+        data:
+          tls.crt: "{{ .crt }}"
+          tls.key: "{{ .key }}"
+    data:
+      - secretKey: key
+        remoteRef:
+          key: tls-wildcard-wheatley-in/key
+          metadataPolicy: None
+          conversionStrategy: Default
+          decodingStrategy: None
+      - secretKey: crt
+        remoteRef:
+          key: tls-wildcard-wheatley-in/crt
+          metadataPolicy: None
+          conversionStrategy: Default
+          decodingStrategy: None
--- a/k8s-wheatley/external-secrets-operator/kustomization.yaml
+++ b/k8s-wheatley/external-secrets-operator/kustomization.yaml
@ -0,0 +1,7 @@
+---
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+  - ../../kustomize-bases/external-secrets-operator
+  - clustersecrets.yaml
--- a/kustomize-bases/external-secrets-operator/kustomization.yaml
+++ b/kustomize-bases/external-secrets-operator/kustomization.yaml
@ -0,0 +1,14 @@
+---
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+  - namespace.yaml
+  - secretstore.yaml
+
+helmCharts:
+  - name: external-secrets
+    repo: https://charts.external-secrets.io
+    namespace: external-secrets
+    releaseName: external-secrets
+    version: 1.0.0
--- a/kustomize-bases/external-secrets-operator/namespace.yaml
+++ b/kustomize-bases/external-secrets-operator/namespace.yaml
--- a/kustomize-bases/external-secrets-operator/secretstore.yaml
+++ b/kustomize-bases/external-secrets-operator/secretstore.yaml