Skip to content

Commit

Permalink
feat: update External Secrets Operator CRDs to v0.7.2 (#109)
Browse files Browse the repository at this point in the history
  • Loading branch information
@matthijsvanderloos
matthijsvanderloos authored Feb 9, 2023
1 parent 1c0dc91 commit c4c3550
Show file tree
Hide file tree
Showing 9 changed files with 807 additions and 16 deletions.
127 changes: 119 additions & 8 deletions external-secrets.io/clusterexternalsecret_v1beta1.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@
"description": "ExternalSecretData defines the connection between the Kubernetes Secret key (spec.data.<key>) and the Provider data.",
"properties": {
"remoteRef": {
"description": "ExternalSecretDataRemoteRef defines Provider data location.",
"description": "RemoteRef points to the remote secret and defines which secret (version/property/..) to fetch.",
"properties": {
"conversionStrategy": {
"default": "Default",
Expand Down Expand Up @@ -64,7 +64,58 @@
"additionalProperties": false
},
"secretKey": {
"description": "SecretKey defines the key in which the controller stores the value. This is the key in the Kind=Secret",
"type": "string"
},
"sourceRef": {
"description": "SourceRef allows you to override the source from which the value will pulled from.",
"maxProperties": 1,
"properties": {
"generatorRef": {
"description": "GeneratorRef points to a generator custom resource in",
"properties": {
"apiVersion": {
"default": "generators.external-secrets.io/v1alpha1",
"description": "Specify the apiVersion of the generator resource",
"type": "string"
},
"kind": {
"description": "Specify the Kind of the resource, e.g. Password, ACRAccessToken etc.",
"type": "string"
},
"name": {
"description": "Specify the name of the generator resource",
"type": "string"
}
},
"required": [
"kind",
"name"
],
"type": "object",
"additionalProperties": false
},
"storeRef": {
"description": "SecretStoreRef defines which SecretStore to fetch the ExternalSecret data.",
"properties": {
"kind": {
"description": "Kind of the SecretStore resource (SecretStore or ClusterSecretStore) Defaults to `SecretStore`",
"type": "string"
},
"name": {
"description": "Name of the SecretStore resource",
"type": "string"
}
},
"required": [
"name"
],
"type": "object",
"additionalProperties": false
}
},
"type": "object",
"additionalProperties": false
}
},
"required": [
Expand All @@ -81,7 +132,7 @@
"items": {
"properties": {
"extract": {
"description": "Used to extract multiple key/value pairs from one secret",
"description": "Used to extract multiple key/value pairs from one secret Note: Extract does not support sourceRef.Generator or sourceRef.GeneratorRef.",
"properties": {
"conversionStrategy": {
"default": "Default",
Expand Down Expand Up @@ -117,7 +168,7 @@
"additionalProperties": false
},
"find": {
"description": "Used to find secrets based on tags or regular expressions",
"description": "Used to find secrets based on tags or regular expressions Note: Find does not support sourceRef.Generator or sourceRef.GeneratorRef.",
"properties": {
"conversionStrategy": {
"default": "Default",
Expand Down Expand Up @@ -183,6 +234,56 @@
"additionalProperties": false
},
"type": "array"
},
"sourceRef": {
"description": "SourceRef points to a store or generator which contains secret values ready to use. Use this in combination with Extract or Find pull values out of a specific SecretStore. When sourceRef points to a generator Extract or Find is not supported. The generator returns a static map of values",
"maxProperties": 1,
"properties": {
"generatorRef": {
"description": "GeneratorRef points to a generator custom resource in",
"properties": {
"apiVersion": {
"default": "generators.external-secrets.io/v1alpha1",
"description": "Specify the apiVersion of the generator resource",
"type": "string"
},
"kind": {
"description": "Specify the Kind of the resource, e.g. Password, ACRAccessToken etc.",
"type": "string"
},
"name": {
"description": "Specify the name of the generator resource",
"type": "string"
}
},
"required": [
"kind",
"name"
],
"type": "object",
"additionalProperties": false
},
"storeRef": {
"description": "SecretStoreRef defines which SecretStore to fetch the ExternalSecret data.",
"properties": {
"kind": {
"description": "Kind of the SecretStore resource (SecretStore or ClusterSecretStore) Defaults to `SecretStore`",
"type": "string"
},
"name": {
"description": "Name of the SecretStore resource",
"type": "string"
}
},
"required": [
"name"
],
"type": "object",
"additionalProperties": false
}
},
"type": "object",
"additionalProperties": false
}
},
"type": "object",
Expand Down Expand Up @@ -283,8 +384,6 @@
},
"templateFrom": {
"items": {
"maxProperties": 1,
"minProperties": 1,
"properties": {
"configMap": {
"properties": {
Expand All @@ -293,6 +392,10 @@
"properties": {
"key": {
"type": "string"
},
"templateAs": {
"default": "Values",
"type": "string"
}
},
"required": [
Expand All @@ -314,13 +417,20 @@
"type": "object",
"additionalProperties": false
},
"literal": {
"type": "string"
},
"secret": {
"properties": {
"items": {
"items": {
"properties": {
"key": {
"type": "string"
},
"templateAs": {
"default": "Values",
"type": "string"
}
},
"required": [
Expand All @@ -341,6 +451,10 @@
],
"type": "object",
"additionalProperties": false
},
"target": {
"default": "Data",
"type": "string"
}
},
"type": "object",
Expand All @@ -360,9 +474,6 @@
"additionalProperties": false
}
},
"required": [
"secretStoreRef"
],
"type": "object",
"additionalProperties": false
},
Expand Down
41 changes: 41 additions & 0 deletions external-secrets.io/clustersecretstore_v1beta1.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -316,6 +316,13 @@
"aws": {
"description": "AWS configures this store to sync secrets using AWS Secret Manager provider",
"properties": {
"additionalRoles": {
"description": "AdditionalRoles is a chained list of Role ARNs which the SecretManager provider will sequentially assume before assuming Role",
"items": {
"type": "string"
},
"type": "array"
},
"auth": {
"description": "Auth defines the information necessary to authenticate against AWS if not set aws sdk will infer credentials from your environment see: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials",
"properties": {
Expand Down Expand Up @@ -391,6 +398,25 @@
},
"type": "object",
"additionalProperties": false
},
"sessionTokenSecretRef": {
"description": "The SessionToken used for authentication This must be defined if AccessKeyID and SecretAccessKey are temporary credentials see: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_use-resources.html",
"properties": {
"key": {
"description": "The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be defaulted, in others it may be required.",
"type": "string"
},
"name": {
"description": "The name of the Secret resource being referred to.",
"type": "string"
},
"namespace": {
"description": "Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults to the namespace of the referent.",
"type": "string"
}
},
"type": "object",
"additionalProperties": false
}
},
"type": "object",
Expand Down Expand Up @@ -782,6 +808,17 @@
"description": "Environment environment_scope of gitlab CI/CD variables (Please see https://docs.gitlab.com/ee/ci/environments/#create-a-static-environment on how to create environments)",
"type": "string"
},
"groupIDs": {
"description": "GroupIDs specify, which gitlab groups to pull secrets from. Group secrets are read from left to right followed by the project variables.",
"items": {
"type": "string"
},
"type": "array"
},
"inheritFromGroups": {
"description": "InheritFromGroups specifies whether parent groups should be discovered and checked for secrets.",
"type": "boolean"
},
"projectID": {
"description": "ProjectID specifies a project where secrets are located.",
"type": "string"
Expand Down Expand Up @@ -1899,6 +1936,10 @@
"status": {
"description": "SecretStoreStatus defines the observed state of the SecretStore.",
"properties": {
"capabilities": {
"description": "SecretStoreCapabilities defines the possible operations a SecretStore can do.",
"type": "string"
},
"conditions": {
"items": {
"properties": {
Expand Down
Loading

0 comments on commit c4c3550

Please sign in to comment.