Add CSI secrets-store with vault provider
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
parent
5803f5f006
commit
158419cfbb
12 changed files with 357 additions and 0 deletions
43
files/secrets-store/provider-vault-installer.yaml
Normal file
43
files/secrets-store/provider-vault-installer.yaml
Normal file
|
|
@ -0,0 +1,43 @@
|
|||
apiVersion: apps/v1
|
||||
kind: DaemonSet
|
||||
metadata:
|
||||
namespace: csi-secrets-store
|
||||
labels:
|
||||
app: csi-secrets-store-provider-vault
|
||||
name: csi-secrets-store-provider-vault
|
||||
spec:
|
||||
updateStrategy:
|
||||
type: RollingUpdate
|
||||
selector:
|
||||
matchLabels:
|
||||
app: csi-secrets-store-provider-vault
|
||||
template:
|
||||
metadata:
|
||||
labels:
|
||||
app: csi-secrets-store-provider-vault
|
||||
spec:
|
||||
tolerations:
|
||||
containers:
|
||||
- name: provider-vault-installer
|
||||
image: hashicorp/secrets-store-csi-driver-provider-vault:0.0.4
|
||||
imagePullPolicy: Always
|
||||
resources:
|
||||
requests:
|
||||
cpu: 50m
|
||||
memory: 100Mi
|
||||
limits:
|
||||
cpu: 50m
|
||||
memory: 100Mi
|
||||
env:
|
||||
# set TARGET_DIR env var and mount the same directory to to the container
|
||||
- name: TARGET_DIR
|
||||
value: "/etc/kubernetes/secrets-store-csi-providers"
|
||||
volumeMounts:
|
||||
- mountPath: "/etc/kubernetes/secrets-store-csi-providers"
|
||||
name: providervol
|
||||
volumes:
|
||||
- name: providervol
|
||||
hostPath:
|
||||
path: "/etc/kubernetes/secrets-store-csi-providers"
|
||||
nodeSelector:
|
||||
beta.kubernetes.io/os: linux
|
||||
Loading…
Add table
Add a link
Reference in a new issue