31 lines
698 B
YAML
31 lines
698 B
YAML
apiVersion: external-secrets.io/v1beta1
|
|
kind: ExternalSecret
|
|
metadata:
|
|
name: argocd-oidc-secret-source
|
|
namespace: argocd
|
|
spec:
|
|
refreshInterval: 1m
|
|
secretStoreRef:
|
|
name: vault-backend
|
|
kind: ClusterSecretStore
|
|
target:
|
|
name: argocd-oidc-secret
|
|
template:
|
|
engineVersion: v2
|
|
data:
|
|
# ArgoCD OIDC Config Keys (ohne Punkte, zur Sicherheit)
|
|
client_id: "{{ .client_id }}"
|
|
client_secret: "{{ .client_secret }}"
|
|
|
|
|
|
|
|
data:
|
|
- secretKey: client_id
|
|
remoteRef:
|
|
key: secret/apps/argocd
|
|
property: oidc_client_id
|
|
- secretKey: client_secret
|
|
remoteRef:
|
|
key: secret/apps/argocd
|
|
property: oidc_client_secret
|