bstein/titan-iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

platform: add vault csi driver

Browse Source
This commit is contained in:
Brad Stein 2025-12-25 03:14:50 -03:00
parent 9bbdbb5fab
commit fbe2490ef7
7 changed files with 71 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
clusters/atlas/flux-system/platform/kustomization.yaml
View File

@ -8,3 +8,4 @@ resources:
- gitops-ui/kustomization.yaml - gitops-ui/kustomization.yaml
- monitoring/kustomization.yaml - monitoring/kustomization.yaml
- longhorn-ui/kustomization.yaml - longhorn-ui/kustomization.yaml
- ../platform/vault-csi/kustomization.yaml

16
clusters/atlas/flux-system/platform/vault-csi/kustomization.yaml Normal file
View File

@ -0,0 +1,16 @@
# clusters/atlas/flux-system/platform/vault-csi/kustomization.yaml
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: vault-csi
namespace: flux-system
spec:
interval: 30m
sourceRef:
kind: GitRepository
name: flux-system
namespace: flux-system
path: ./infrastructure/vault-csi
prune: true
wait: true
targetNamespace: kube-system

1
infrastructure/sources/helm/kustomization.yaml
View File

@ -10,3 +10,4 @@ resources:
- harbor.yaml - harbor.yaml
- prometheus.yaml - prometheus.yaml
- victoria-metrics.yaml - victoria-metrics.yaml
- secrets-store-csi.yaml

9
infrastructure/sources/helm/secrets-store-csi.yaml Normal file
View File

@ -0,0 +1,9 @@
# infrastructure/sources/helm/secrets-store-csi.yaml
apiVersion: source.toolkit.fluxcd.io/v1
kind: HelmRepository
metadata:
name: secrets-store-csi-driver
namespace: flux-system
spec:
interval: 1h
url: https://kubernetes-sigs.github.io/secrets-store-csi-driver/charts

7
infrastructure/vault-csi/kustomization.yaml Normal file
View File

@ -0,0 +1,7 @@
# infrastructure/vault-csi/kustomization.yaml
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: kube-system
resources:
- secrets-store-csi-driver.yaml
- vault-csi-provider.yaml

20
infrastructure/vault-csi/secrets-store-csi-driver.yaml Normal file
View File

@ -0,0 +1,20 @@
# infrastructure/vault-csi/secrets-store-csi-driver.yaml
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: secrets-store-csi-driver
namespace: kube-system
spec:
interval: 15m
chart:
spec:
chart: secrets-store-csi-driver
version: "~1.3.0"
sourceRef:
kind: HelmRepository
name: secrets-store-csi-driver
namespace: flux-system
values:
syncSecret:
enabled: true
enableSecretRotation: false

17
infrastructure/vault-csi/vault-csi-provider.yaml Normal file
View File

@ -0,0 +1,17 @@
# infrastructure/vault-csi/vault-csi-provider.yaml
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: vault-csi-provider
namespace: kube-system
spec:
interval: 15m
chart:
spec:
chart: vault-csi-provider
version: "~1.1.0"
sourceRef:
kind: HelmRepository
name: hashicorp
namespace: flux-system
values: {}