diff --git a/tasks/secrets-store.yml b/tasks/secrets-store.yml index 00acb6f..791dc85 100644 --- a/tasks/secrets-store.yml +++ b/tasks/secrets-store.yml @@ -17,13 +17,14 @@ - name: Defined Secrets Store repository kubernetes.core.helm_repository: name: secrets-store-csi-driver - repo_url: "https://raw.githubusercontent.com/kubernetes-sigs/secrets-store-csi-driver/master/charts" + repo_url: "https://kubernetes-sigs.github.io/secrets-store-csi-driver/charts" - name: Deploy Secrets Store chart kubernetes.core.helm: context: "{{ my_context }}" state: "{{ storage_secrets_store_state }}" name: csi-secrets-store + namespace: "kube-system" chart_ref: secrets-store-csi-driver/secrets-store-csi-driver # https://github.com/camptocamp/secrets-store-csi-driver-provider-gopass @@ -31,13 +32,28 @@ kubernetes.core.k8s: state: "{{ storage_secrets_store_state }}" context: "{{ my_context }}" - namespace: "{{ storage_localpath_namespace }}" + namespace: "kube-system" apply: true resource_definition: "{{ lookup('file', 'secrets-provider-gopass/provider-gopass-installer.yaml') | from_yaml }}" + # https://github.com/Azure/secrets-store-csi-driver-provider-azure + - name: Deploy Secrets Store CSI driver provider azure + kubernetes.core.helm_repository: + name: csi-secrets-store-provider-azure + repo_url: "https://raw.githubusercontent.com/Azure/secrets-store-csi-driver-provider-azure/master/charts" + - name: Deploy Secrets Store chart + kubernetes.core.helm: + context: "{{ my_context }}" + state: "{{ storage_secrets_store_state }}" + name: csi-secrets-store-provider-azure + namespace: "kube-system" + chart_ref: csi-secrets-store-provider-azure/csi-secrets-store-provider-azure + values: + secrets-store-csi-driver: + install: false + tags: - storage - secrets-store # https://github.com/hashicorp/vault-csi-provider -# https://github.com/Azure/secrets-store-csi-driver-provider-azure