41 lines
1021 B
YAML
41 lines
1021 B
YAML
|
---
|
||
|
|
apiVersion: external-secrets.io/v1
|
||
|
|
kind: ExternalSecret
|
||
|
|
metadata:
|
||
|
|
name: oauth2-proxy-creds
|
||
|
|
spec:
|
||
|
|
target:
|
||
|
|
name: oauth2-proxy-creds
|
||
|
|
deletionPolicy: Delete
|
||
|
|
template:
|
||
|
|
type: Opaque
|
||
|
|
data:
|
||
|
|
client_id: oauth2-proxy
|
||
|
|
client_secret: |-
|
||
|
|
{{ .client_secret }}
|
||
|
|
cookie_secret: |-
|
||
|
|
{{ .cookie_secret }}
|
||
|
|
data:
|
||
|
|
- secretKey: client_secret
|
||
|
|
sourceRef:
|
||
|
|
storeRef:
|
||
|
|
name: vaultwarden-login
|
||
|
|
kind: ClusterSecretStore
|
||
|
|
remoteRef:
|
||
|
|
conversionStrategy: Default
|
||
|
|
decodingStrategy: None
|
||
|
|
metadataPolicy: None
|
||
|
|
key: PLACEHOLDER_VAULTWARDEN_ITEM_ID
|
||
|
|
property: login.password
|
||
|
|
- secretKey: cookie_secret
|
||
|
|
sourceRef:
|
||
|
|
storeRef:
|
||
|
|
name: vaultwarden-login
|
||
|
|
kind: ClusterSecretStore
|
||
|
|
remoteRef:
|
||
|
|
conversionStrategy: Default
|
||
|
|
decodingStrategy: None
|
||
|
|
metadataPolicy: None
|
||
|
|
key: PLACEHOLDER_VAULTWARDEN_ITEM_ID
|
||
|
|
property: fields[0].value
|