-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathvalues-secret.yaml.template
42 lines (40 loc) · 1.26 KB
/
values-secret.yaml.template
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
# A more formal description of this format can be found here:
# https://github.com/hybrid-cloud-patterns/common/tree/main/ansible/roles/vault_utils#values-secret-file-format
version: "2.0"
# Ideally you NEVER COMMIT THESE VALUES TO GIT (although if all passwords are
# automatically generated inside the vault this should not really matter)
secrets:
- name: minio_tenant_root
vaultPrefixes:
- global
fields:
- name: 'config.env'
value: |-
export MINIO_ROOT_USER=ROOTUSERNAME
export MINIO_ROOT_PASSWORD=ROOTUSERPASSWORD
onMissingValue: prompt
vaultPolicy: validatedPatternDefaultPolicy
- name: test-project-a-aws
vaultPrefixes:
- global
fields:
- name: AWS_ACCESS_KEY_ID
value: ''
onMissingValue: prompt
vaultPolicy: validatedPatternDefaultPolicy
- name: AWS_SECRET_ACCESS_KEY
value: ''
onMissingValue: prompt
vaultPolicy: validatedPatternDefaultPolicy
- name: test-project-b-aws
vaultPrefixes:
- global
fields:
- name: AWS_ACCESS_KEY_ID
value: ''
onMissingValue: prompt
vaultPolicy: validatedPatternDefaultPolicy
- name: AWS_SECRET_ACCESS_KEY
value: ''
onMissingValue: prompt
vaultPolicy: validatedPatternDefaultPolicy