From 944ad244f7cd7eec11d65c2ebc4dfbbc6a1c2c14 Mon Sep 17 00:00:00 2001 From: Edward Cheng Date: Tue, 16 Jul 2024 00:59:25 +1000 Subject: [PATCH] test sealed-secrets decryption --- .../app-secrets/env/k3s-cluster/Chart.yaml | 9 +++++++ .../app-secrets/env/k3s-cluster/config.json | 12 +++++++++ .../env/k3s-cluster/templates/postgresql.yaml | 26 +++++++++++++++++++ 3 files changed, 47 insertions(+) create mode 100644 resources/app-secrets/env/k3s-cluster/Chart.yaml create mode 100644 resources/app-secrets/env/k3s-cluster/config.json create mode 100644 resources/app-secrets/env/k3s-cluster/templates/postgresql.yaml diff --git a/resources/app-secrets/env/k3s-cluster/Chart.yaml b/resources/app-secrets/env/k3s-cluster/Chart.yaml new file mode 100644 index 0000000..db60391 --- /dev/null +++ b/resources/app-secrets/env/k3s-cluster/Chart.yaml @@ -0,0 +1,9 @@ +apiVersion: v2 +version: "0.0.1" +appVersion: "0.0.3" +name: app-secrets + +dependencies: + - name: empty + version: 0.0.3 + repository: "https://jenkins-x-charts.github.io/v2/" \ No newline at end of file diff --git a/resources/app-secrets/env/k3s-cluster/config.json b/resources/app-secrets/env/k3s-cluster/config.json new file mode 100644 index 0000000..ca1a97c --- /dev/null +++ b/resources/app-secrets/env/k3s-cluster/config.json @@ -0,0 +1,12 @@ +{ + "appName": "app-secrets", + "userGivenName": "app-secrets", + "namespace": "app-secrets", + "destNamespace": "app-secrets", + "destServer": "https://kubernetes.default.svc", + "srcPath": "resources/app-secrets/env/k3s-cluster", + "srcRepoURL": "https://github.com/3dwardch3ng/home-cluster-ops.git", + "srcTargetRevision": "", + "labels": null, + "annotations": null +} \ No newline at end of file diff --git a/resources/app-secrets/env/k3s-cluster/templates/postgresql.yaml b/resources/app-secrets/env/k3s-cluster/templates/postgresql.yaml new file mode 100644 index 0000000..cb7b9d5 --- /dev/null +++ b/resources/app-secrets/env/k3s-cluster/templates/postgresql.yaml @@ -0,0 +1,26 @@ +--- +apiVersion: bitnami.com/v1alpha1 +kind: SealedSecret +metadata: + annotations: + sealedsecrets.bitnami.com/cluster-wide: "true" + creationTimestamp: null + name: postgresql-secrets + namespace: argocd +spec: + encryptedData: + database: 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 + password: AgBibee/zNhTG2+QCJ3fT35IlAqKSpzVgK8abWHVSn4CG1s4Q30VmAiFecX4mhYI06bWZfRDPaJ8AcpKZTH9QcDrW2YQIguhTIDGDjDb1doEnsja076vQbHJJdpU/mAB7lJHA1e815aFnX1uH/FpYWYCb2XR55DwUI8p/z2t1hZ6P21eNZSuYZU2TvRo3FGtrciaAEfe3tp3uvbG+da/7qbB9ECTb7MHpCMpLlS81/Pl4/I9HtViWTesbFB2WCi1pBft/Ixqi+bRCRAyX88Cgs0t6SWMbznWGDbWZwjjr2MaQDT1zzIw6Tur1MgCNNLBenk5UTJrFbgzWfZSjeoJZhEN+8mGAWgl0gU5cGmBFuSzJnwyM97ZofKOxwdTEzkhe5nXcJbaEuNDuBTEiJBnQ+ZAwlBoVceXRsxVTEZ1KZBqgaWyfjRExQLJ0SXyzLUw57RI4+pS8A+2HEyQmSv491DEpsPOWZZqVxpLJd+0wK+bp5fkKo/Av9vemixbC59yaSIyFSTilSBJqXBPrupKsKoPiv9uo4Rx5i39W7cSmr8/0oC18vsvZzYQXVhB6V501PQsMONs/hvtiUh+QONe30bonWUGaecnzOHvkYelTjb5mYd17GZsmFaPJKALs7rVVszdeNYxkJ/P8bxKqNxGHtGTn/wiicp0Ktbtj0J5LT9TQtOSENdYM2xG8tNYIHVY5COe2fXvSMBRIo+MudjGKBo6qdI8kw== + postgres_password: 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 + replication_password: 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 + username: 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 + template: + metadata: + annotations: + argocd.argoproj.io/sync-options: Prune=false + sealedsecrets.bitnami.com/cluster-wide: "true" + sealedsecrets.bitnami.com/managed: "true" + creationTimestamp: null + name: postgresql-secrets + namespace: argocd + type: Opaque