33 lines
1.2 KiB
YAML
33 lines
1.2 KiB
YAML
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: {{ include "exam.fullname" . }}-secrets
|
|
labels:
|
|
{{- include "exam.labels" . | nindent 4 }}
|
|
data:
|
|
password: {{ required "secrets.password is required" .Values.secrets.password
|
|
| b64enc | quote }}
|
|
username: {{ required "secrets.username is required" .Values.secrets.username
|
|
| b64enc | quote }}
|
|
type: Opaque
|
|
---
|
|
{{- if (include "exam.createTlsSecret" . ) }}
|
|
{{- $secretName := printf "%s-crt" (include "exam.fullname" .) }}
|
|
{{- $ca := genCA "ingress-ca" 365 }}
|
|
{{- $fullname := "kube-exam.local" }}
|
|
{{- $cert := genSignedCert $fullname nil nil 365 $ca }}
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: {{ $secretName }}
|
|
labels:
|
|
{{- include "exam.labels" . | nindent 4 }}
|
|
annotations:
|
|
"helm.sh/hook": "pre-install"
|
|
"helm.sh/hook-delete-policy": "before-hook-creation"
|
|
type: kubernetes.io/tls
|
|
data:
|
|
tls.crt: {{ include "exam.lookup" (dict "secret" $secretName "key" "tls.crt" "defaultValue" $cert.Cert "context" $) }}
|
|
tls.key: {{ include "exam.lookup" (dict "secret" $secretName "key" "tls.key" "defaultValue" $cert.Key "context" $) }}
|
|
ca.crt: {{ include "exam.lookup" (dict "secret" $secretName "key" "ca.crt" "defaultValue" $ca.Cert "context" $) }}
|
|
{{- end }} |