Add CSI secrets-store with vault provider

bin/update.sh

@@ -56,5 +56,21 @@ rm -fr files/digitalocean.old generated.log csi-digitalocean-latest.yaml
 #https://github.com/wavezhang/k8s-csi-lvm ?
 #https://github.com/juicedata/juicefs-csi-driver ?
 
+
+SECRETS_STORE_FILE=vars/secrets_store_files_list.yml
+echo -e "---\nsecrets_store_files:" > "${SECRETS_STORE_FILE}"
+git clone https://github.com/kubernetes-sigs/secrets-store-csi-driver.git
+kubernetes-split-yaml secrets-store-csi-driver/deploy/rbac-secretproviderclass.yaml > generated.log
+kubernetes-split-yaml secrets-store-csi-driver/deploy/csidriver.yaml >> generated.log
+kubernetes-split-yaml secrets-store-csi-driver/deploy/secrets-store.csi.x-k8s.io_secretproviderclasses.yaml >> generated.log
+kubernetes-split-yaml secrets-store-csi-driver/deploy/secrets-store-csi-driver.yaml >> generated.log
+cat generated.log | while read LIGNE; do if [ $(echo "${LIGNE}" | grep -c ^File) -eq 1 ]; then echo -n "${LIGNE} "; else echo "${LIGNE}"; fi; done | grep ^File | sed 's|.*\(generated/\)\(.*\.yaml\)|  - "secrets-store/\2"|' >> "${SECRETS_STORE_FILE}"
+mv files/secrets-store{,.old}
+mv generated files/secrets-store
+sed "/^metadata:$/a \  namespace: csi-secrets-store" -i files/secrets-store/csi-secrets-store-DaemonSet.yaml
+rm -fr files/secrets-store.old generated.log secrets-store-csi-driver
+curl -s -o files/secrets-store/provider-vault-installer.yaml https://raw.githubusercontent.com/hashicorp/secrets-store-csi-driver-provider-vault/master/deployment/provider-vault-installer.yaml
+sed "/^metadata:$/a \  namespace: csi-secrets-store" -i files/secrets-store/provider-vault-installer.yaml
+echo '  - "secrets-store/provider-vault-installer.yaml"' >> "${SECRETS_STORE_FILE}"
 #https://github.com/Azure/secrets-store-csi-driver-provider-azure
 #https://github.com/hashicorp/secrets-store-csi-driver-provider-vault