From e1d626c91e4febcfd8c019eae0e1a2c707a675ee Mon Sep 17 00:00:00 2001 From: kirinnee Date: Mon, 30 Dec 2024 15:31:25 +0800 Subject: [PATCH] fix: refer to infisical secretstore instead of iodine for root token --- chart/README.md | 8 ++++---- chart/values.yaml | 6 +++--- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/chart/README.md b/chart/README.md index 399bb6a..04b8c95 100755 --- a/chart/README.md +++ b/chart/README.md @@ -15,7 +15,7 @@ Helm chart to install virtual cluster on a physical cluster | Key | Type | Default | Description | |-----|------|---------|-------------| -| auth | object | `{"clientId":{"remoteName":"PICHU_SULFOXIDE_SOS_CLIENT_ID","secretKey":"CLIENT_ID"},"clientSecret":{"remoteName":"PICHU_SULFOXIDE_SOS_CLIENT_SECRET","secretKey":"CLIENT_SECRET"},"name":"root-token","policy":{"creation":"Owner","deletion":"Retain"},"refreshInterval":"1m","secretStore":{"kind":"SecretStore","name":"iodine"},"upsyncNamespace":"sulfoxide"}` | Root Doppler token | +| auth | object | `{"clientId":{"remoteName":"PICHU_SULFOXIDE_SOS_CLIENT_ID","secretKey":"CLIENT_ID"},"clientSecret":{"remoteName":"PICHU_SULFOXIDE_SOS_CLIENT_SECRET","secretKey":"CLIENT_SECRET"},"name":"root-token","policy":{"creation":"Owner","deletion":"Retain"},"refreshInterval":"1m","secretStore":{"kind":"ClusterSecretStore","name":"infisical"},"upsyncNamespace":"sulfoxide"}` | Root Infisical token | | auth.clientId | object | `{"remoteName":"PICHU_SULFOXIDE_SOS_CLIENT_ID","secretKey":"CLIENT_ID"}` | Upsync secret of secrets reference for client ID | | auth.clientId.remoteName | string | `"PICHU_SULFOXIDE_SOS_CLIENT_ID"` | remote reference of the CLIENT_ID in the secret of secrets store | | auth.clientId.secretKey | string | `"CLIENT_ID"` | secret key to store CLIENT_ID | @@ -26,9 +26,9 @@ Helm chart to install virtual cluster on a physical cluster | auth.policy.creation | string | `"Owner"` | External Secret creation policy | | auth.policy.deletion | string | `"Retain"` | External Secret deletion policy | | auth.refreshInterval | string | `"1m"` | external secret refresh interval | -| auth.secretStore | object | `{"kind":"SecretStore","name":"iodine"}` | Secret store to reference | -| auth.secretStore.kind | string | `"SecretStore"` | kind of the secret store to reference | -| auth.secretStore.name | string | `"iodine"` | name of the secret store to reference | +| auth.secretStore | object | `{"kind":"ClusterSecretStore","name":"infisical"}` | Secret store to reference | +| auth.secretStore.kind | string | `"ClusterSecretStore"` | kind of the secret store to reference | +| auth.secretStore.name | string | `"infisical"` | name of the secret store to reference | | auth.upsyncNamespace | string | `"sulfoxide"` | upsync namespace | | etcd | object | `{"auth":{"client":{"enableAuthentication":false},"peer":{"enableAuthentication":false},"rbac":{"create":false},"token":{"enabled":false}},"commonAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"iodine"},"atomi.cloud/module":"etcd"},"commonLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"iodine"},"atomi.cloud/module":"etcd"},"persistence":{"enabled":false},"podAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"iodine"},"atomi.cloud/module":"etcd"},"podLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"iodine"},"atomi.cloud/module":"etcd"},"removeMemberOnContainerTermination":false,"replicaCount":3,"topologySpreadConstraints":[{"labelSelector":{"matchLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"iodine"},"atomi.cloud/module":"etcd"}},"maxSkew":1,"topologyKey":"topology.kubernetes.io/zone","whenUnsatisfiable":"ScheduleAnyway"}]}` | ETCD Cluster configuration. See [etcd documentation](https://artifacthub.io/packages/helm/bitnami/etcd) | | secretAnnotation | object | `{"argocd.argoproj.io/sync-wave":"-3"}` | Secret Annotations (External Secrets) to control synchronization | diff --git a/chart/values.yaml b/chart/values.yaml index 89b5892..d167edb 100755 --- a/chart/values.yaml +++ b/chart/values.yaml @@ -32,16 +32,16 @@ sulfoxide-bromine: secretAnnotation: argocd.argoproj.io/sync-wave: "-3" -# -- Root Doppler token +# -- Root Infisical token auth: # -- external secret refresh interval refreshInterval: 1m # -- Secret store to reference secretStore: # -- name of the secret store to reference - name: *service + name: infisical # -- kind of the secret store to reference - kind: SecretStore + kind: ClusterSecretStore policy: # -- External Secret creation policy creation: Owner