Jonathan Leech-Pepin
ae1a0b7e10
Existing deployments are being migrated to Kustomize for templating purposes. This might not actually save space due to number of patches but it does reduce the amount of changes that need to be made to portions that only need name changes. Existing resources that are not going to be kustomized will be added in subsequent commits.
27 lines
924 B
YAML
27 lines
924 B
YAML
apiVersion: secrets.infisical.com/v1alpha1
|
|
kind: InfisicalSecret
|
|
metadata:
|
|
name: secrets
|
|
namespace: infisical
|
|
labels:
|
|
label-to-be-passed-to-managed-secret: homelab
|
|
annotations:
|
|
example.com/annotation-to-be-passed-to-managed-secret: "homelab"
|
|
spec:
|
|
hostAPI: https://app.infisical.com/api
|
|
resyncInterval: 10
|
|
authentication:
|
|
# Universal Auth
|
|
universalAuth:
|
|
secretsScope:
|
|
projectSlug: homelab-n-f-yj
|
|
envSlug: prod
|
|
secretsPath: "/apps/appname" # Root is "/"
|
|
recursive: false # Whether or not to use recursive mode (Fetches all secrets in an environment from a given secret path, and all folders inside the path) / defaults to false
|
|
credentialsRef:
|
|
secretName: universal-auth-credentials
|
|
secretNamespace: infisical
|
|
managedSecretReference:
|
|
secretName: app-secrets
|
|
secretNamespace: ns
|
|
creationPolicy: "Orphan" ## Owner | Orphan
|