This repository has been archived on 2024-02-11. You can view files and clone it, but cannot push or open issues or pull requests.
valinor/kubernetes/apps/security/external-secrets/cluster-secrets/pgo-s3-creds.yaml

40 lines
873 B
YAML

---
apiVersion: external-secrets.io/v1beta1
kind: ClusterExternalSecret
metadata:
name: pgo-s3-creds
spec:
externalSecretName: pgo-s3-creds
namespaceSelector:
matchLabels:
pgo-enabled-hsn.dev: "true"
refreshTime: "1m"
externalSecretSpec:
secretStoreRef:
kind: ClusterSecretStore
name: onepassword-connect
target:
name: pgo-s3-creds
creationPolicy: Owner
template:
engineVersion: v2
data:
s3.conf: |
[global]
repo1-s3-key={{ .minio_crunchy_postgres_access_key }}
repo1-s3-key-secret={{ .minio_crunchy_postgres_secret_key }}
dataFrom:
- extract:
key: minio
rewrite:
- regexp:
source: "[-]"
target: "_"
- regexp:
source: "(.*)"
target: "minio_$1"