Skip to content

Commit

Permalink
Adding Sealed Secrets
Browse files Browse the repository at this point in the history
  • Loading branch information
@danmanners
danmanners committed Oct 18, 2023
1 parent 8a652da commit 3562dc9
Show file tree
Hide file tree
Showing 5 changed files with 72 additions and 0 deletions.
31 changes: 31 additions & 0 deletions manifests/bootstrapping-onprem/sealed-secrets/application.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,31 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: sealed-secrets
namespace: argocd
spec:
destination:
namespace: kube-system
server: https://kubernetes.default.svc
project: default
sources:
# Git Repo Deployment
- path: manifests/bootstrapping-onprem/sealed-secrets
repoURL: https://github.com/danmanners/homelab-kube-cluster.git
targetRevision: main
# Helm Repo Ref
- repoURL: https://github.com/danmanners/homelab-kube-cluster.git
targetRevision: main
ref: values
# Helm Chart Deployment
- chart: sealed-secrets
repoURL: https://bitnami-labs.github.io/sealed-secrets
targetRevision: 2.13.1
helm:
valueFiles:
- $values/manifests/bootstrapping-onprem/sealed-secrets/values.yaml
syncPolicy:
automated:
prune: true
syncOptions:
- CreateNamespace=true
7 changes: 7 additions & 0 deletions manifests/bootstrapping-onprem/sealed-secrets/crds/kustomization.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: kube-system

resources:
# renovate: datasource=github-releases depName=bitnami-labs/sealed-secrets
- https://raw.githubusercontent.com/bitnami-labs/sealed-secrets/release/v0.24.2/helm/sealed-secrets/crds/bitnami.com_sealedsecrets.yaml
8 changes: 8 additions & 0 deletions manifests/bootstrapping-onprem/sealed-secrets/kustomization.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: kube-system

resources:
- namespace.yaml
- application.yaml
- crds
6 changes: 6 additions & 0 deletions manifests/bootstrapping-onprem/sealed-secrets/namespace.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
apiVersion: v1
kind: Namespace
metadata:
name: kube-system
labels:
name: kube-system
20 changes: 20 additions & 0 deletions manifests/bootstrapping-onprem/sealed-secrets/values.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
kubeVersion: 1.28
namespace: kube-system

image:
registry: core.harbor.homelab.danmanners.com/docker.io

ingress:
enabled: false
ingressClassName: nginx

createController: true
secretName: sealed-secrets-key

metrics:
serviceMonitor:
enabled: true
namespace: monitoring
dashboards:
create: true
namespace: monitoring

0 comments on commit 3562dc9

Please sign in to comment.