catalin/fukuops
1
0
Fork 1
Code Issues Pull requests 1 Releases Packages 1 Activity

feat: add k8s/vaultwarden-secrets-manager

Browse source
This commit is contained in:
cătălin 2026-03-10 18:14:16 +01:00
commit 9d01bc5177
No known key found for this signature in database
4 changed files with 82 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

64
k8s/argo-apps/vaultwarden-secrets-manager.yaml Normal file
View file

@ -0,0 +1,64 @@
---
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: vaultwarden-secrets-manager
namespace: argocd
spec:
destination:
name: ''
namespace: apps-fuku
server: https://kubernetes.default.svc
sources:
- chart: vaultwarden-kubernetes-secrets
repoURL: ghcr.io/antoniolago/charts
targetRevision: 1.2.8
helm:
valuesObject:
api:
enabled: true
service:
type: LoadBalancer
persistence:
storageClass: truenas-nfs-csi
dashboard:
enabled: true
service:
type: LoadBalancer
ingress:
enabled: true
className: traefik
hosts:
- host: vault-secrets.fuku
paths:
- path: /
pathType: Prefix
backend: dashboard
port: 80
- path: /api
pathType: Prefix
backend: api
port: 8080
env:
config:
VAULTWARDEN__SERVERURL: "https://vault.roboces.dev"
secrets:
BW_CLIENTID:
secretName: "vaultwarden-kubernetes-secrets"
secretKey: "BW_CLIENTID"
BW_CLIENTSECRET:
secretName: "vaultwarden-kubernetes-secrets"
secretKey: "BW_CLIENTSECRET"
VAULTWARDEN__MASTERPASSWORD:
secretName: "vaultwarden-kubernetes-secrets"
secretKey: "VAULTWARDEN__MASTERPASSWORD"
- path: k8s/services/vaultwarden-kubernetes-secrets
repoURL: https://git.roboces.dev/catalin/fukuops.git
targetRevision: main
project: fuku
syncPolicy:
automated:
prune: true
selfHeal: true
syncOptions:
- CreateNamespace=true