new file: infrastructure/cert-manager/external-secret.yaml

new file: infrastructure/external-secrets-app.yaml new file: infrastructure/external-secrets-config-app.yaml new file: infrastructure/external-secrets/cluster-secret-store.yaml
2026-01-11 23:48:46 +00:00
parent 4ba88d15f2
commit c2cee629b8
4 changed files with 78 additions and 0 deletions
--- a/infrastructure/external-secrets/cluster-secret-store.yaml
+++ b/infrastructure/external-secrets/cluster-secret-store.yaml
@@ -0,0 +1,17 @@
+apiVersion: external-secrets.io/v1beta1
+kind: ClusterSecretStore
+metadata:
+  name: vault-backend
+spec:
+  provider:
+    vault:
+      server: "http://10.100.30.11:8200" # Interne IP vom Docker Host
+      path: "secret"
+      version: "v2"
+      auth:
+        kubernetes:
+          mountPath: "kubernetes"
+          role: "external-secrets-role"
+          serviceAccountRef:
+            name: external-secrets
+            namespace: external-secrets