Skip to content

Commit b71a686

Browse files
vshn-renovatevshn-renovate
committed
Update Helm release external-secrets to v0.20.2
Signed-off-by: Renovate Bot <[email protected]>
1 parent 9481206 commit b71a686

File tree

69 files changed

+6215
-237
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

69 files changed

+6215
-237
lines changed

class/defaults.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ parameters:
1313
charts:
1414
external-secrets:
1515
source: https://charts.external-secrets.io
16-
version: 0.18.0
16+
version: 0.20.2
1717

1818
helm_values:
1919
image:

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/cert-controller-deployment.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -5,8 +5,8 @@ metadata:
55
app.kubernetes.io/instance: external-secrets
66
app.kubernetes.io/managed-by: Helm
77
app.kubernetes.io/name: external-secrets-cert-controller
8-
app.kubernetes.io/version: v0.18.0
9-
helm.sh/chart: external-secrets-0.18.0
8+
app.kubernetes.io/version: v0.20.2
9+
helm.sh/chart: external-secrets-0.20.2
1010
name: external-secrets-cert-controller
1111
namespace: syn-external-secrets-operator
1212
spec:
@@ -22,8 +22,8 @@ spec:
2222
app.kubernetes.io/instance: external-secrets
2323
app.kubernetes.io/managed-by: Helm
2424
app.kubernetes.io/name: external-secrets-cert-controller
25-
app.kubernetes.io/version: v0.18.0
26-
helm.sh/chart: external-secrets-0.18.0
25+
app.kubernetes.io/version: v0.20.2
26+
helm.sh/chart: external-secrets-0.20.2
2727
spec:
2828
automountServiceAccountToken: true
2929
containers:
@@ -39,7 +39,7 @@ spec:
3939
- --loglevel=info
4040
- --zap-time-encoding=epoch
4141
- --enable-partial-cache=true
42-
image: oci.external-secrets.io/external-secrets/external-secrets:v0.18.0
42+
image: oci.external-secrets.io/external-secrets/external-secrets:v0.20.2
4343
imagePullPolicy: IfNotPresent
4444
name: cert-controller
4545
ports:

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/cert-controller-rbac.yaml

Lines changed: 12 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -5,8 +5,8 @@ metadata:
55
app.kubernetes.io/instance: external-secrets
66
app.kubernetes.io/managed-by: Helm
77
app.kubernetes.io/name: external-secrets-cert-controller
8-
app.kubernetes.io/version: v0.18.0
9-
helm.sh/chart: external-secrets-0.18.0
8+
app.kubernetes.io/version: v0.20.2
9+
helm.sh/chart: external-secrets-0.20.2
1010
name: external-secrets-cert-controller
1111
rules:
1212
- apiGroups:
@@ -45,6 +45,14 @@ rules:
4545
- list
4646
- get
4747
- watch
48+
- apiGroups:
49+
- discovery.k8s.io
50+
resources:
51+
- endpointslices
52+
verbs:
53+
- list
54+
- get
55+
- watch
4856
- apiGroups:
4957
- ''
5058
resources:
@@ -79,8 +87,8 @@ metadata:
7987
app.kubernetes.io/instance: external-secrets
8088
app.kubernetes.io/managed-by: Helm
8189
app.kubernetes.io/name: external-secrets-cert-controller
82-
app.kubernetes.io/version: v0.18.0
83-
helm.sh/chart: external-secrets-0.18.0
90+
app.kubernetes.io/version: v0.20.2
91+
helm.sh/chart: external-secrets-0.20.2
8492
name: external-secrets-cert-controller
8593
roleRef:
8694
apiGroup: rbac.authorization.k8s.io

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/cert-controller-serviceaccount.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ metadata:
55
app.kubernetes.io/instance: external-secrets
66
app.kubernetes.io/managed-by: Helm
77
app.kubernetes.io/name: external-secrets-cert-controller
8-
app.kubernetes.io/version: v0.18.0
9-
helm.sh/chart: external-secrets-0.18.0
8+
app.kubernetes.io/version: v0.20.2
9+
helm.sh/chart: external-secrets-0.20.2
1010
name: external-secrets-cert-controller
1111
namespace: syn-external-secrets-operator

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/crds/acraccesstoken.yaml

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1
22
kind: CustomResourceDefinition
33
metadata:
44
annotations:
5-
controller-gen.kubebuilder.io/version: v0.18.0
5+
controller-gen.kubebuilder.io/version: v0.19.0
66
labels:
77
external-secrets.io/component: controller
88
name: acraccesstokens.generators.external-secrets.io
@@ -183,6 +183,7 @@ spec:
183183
- USGovernmentCloud
184184
- ChinaCloud
185185
- GermanCloud
186+
- AzureStackCloud
186187
type: string
187188
registry:
188189
description: |-

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/crds/cloudsmithaccesstoken.yaml

Lines changed: 95 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,95 @@
1+
apiVersion: apiextensions.k8s.io/v1
2+
kind: CustomResourceDefinition
3+
metadata:
4+
annotations:
5+
controller-gen.kubebuilder.io/version: v0.19.0
6+
labels:
7+
external-secrets.io/component: controller
8+
name: cloudsmithaccesstokens.generators.external-secrets.io
9+
spec:
10+
group: generators.external-secrets.io
11+
names:
12+
categories:
13+
- external-secrets
14+
- external-secrets-generators
15+
kind: CloudsmithAccessToken
16+
listKind: CloudsmithAccessTokenList
17+
plural: cloudsmithaccesstokens
18+
singular: cloudsmithaccesstoken
19+
scope: Namespaced
20+
versions:
21+
- name: v1alpha1
22+
schema:
23+
openAPIV3Schema:
24+
description: CloudsmithAccessToken generates Cloudsmith access token using
25+
OIDC authentication
26+
properties:
27+
apiVersion:
28+
description: |-
29+
APIVersion defines the versioned schema of this representation of an object.
30+
Servers should convert recognized schemas to the latest internal value, and
31+
may reject unrecognized values.
32+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
33+
type: string
34+
kind:
35+
description: |-
36+
Kind is a string value representing the REST resource this object represents.
37+
Servers may infer this from the endpoint the client submits requests to.
38+
Cannot be updated.
39+
In CamelCase.
40+
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
41+
type: string
42+
metadata:
43+
type: object
44+
spec:
45+
properties:
46+
apiUrl:
47+
description: APIURL configures the Cloudsmith API URL. Defaults
48+
to https://api.cloudsmith.io.
49+
type: string
50+
orgSlug:
51+
description: OrgSlug is the organization slug in Cloudsmith
52+
type: string
53+
serviceAccountRef:
54+
description: Name of the service account you are federating with
55+
properties:
56+
audiences:
57+
description: |-
58+
Audience specifies the `aud` claim for the service account token
59+
If the service account uses a well-known annotation for e.g. IRSA or GCP Workload Identity
60+
then this audiences will be appended to the list
61+
items:
62+
type: string
63+
type: array
64+
name:
65+
description: The name of the ServiceAccount resource being referred
66+
to.
67+
maxLength: 253
68+
minLength: 1
69+
pattern: ^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$
70+
type: string
71+
namespace:
72+
description: |-
73+
Namespace of the resource being referred to.
74+
Ignored if referent is not cluster-scoped, otherwise defaults to the namespace of the referent.
75+
maxLength: 63
76+
minLength: 1
77+
pattern: ^[a-z0-9]([-a-z0-9]*[a-z0-9])?$
78+
type: string
79+
required:
80+
- name
81+
type: object
82+
serviceSlug:
83+
description: ServiceSlug is the service slug in Cloudsmith for OIDC
84+
authentication
85+
type: string
86+
required:
87+
- orgSlug
88+
- serviceAccountRef
89+
- serviceSlug
90+
type: object
91+
type: object
92+
served: true
93+
storage: true
94+
subresources:
95+
status: {}

tests/golden/defaults/external-secrets-operator/external-secrets-operator/10_helm_chart/external-secrets/templates/crds/clusterexternalsecret.yaml

Lines changed: 58 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1
22
kind: CustomResourceDefinition
33
metadata:
44
annotations:
5-
controller-gen.kubebuilder.io/version: v0.18.0
5+
controller-gen.kubebuilder.io/version: v0.19.0
66
labels:
77
external-secrets.io/component: controller
88
name: clusterexternalsecrets.external-secrets.io
@@ -164,12 +164,14 @@ spec:
164164
enum:
165165
- ACRAccessToken
166166
- ClusterGenerator
167+
- CloudsmithAccessToken
167168
- ECRAuthorizationToken
168169
- Fake
169170
- GCRAccessToken
170171
- GithubAccessToken
171172
- QuayAccessToken
172173
- Password
174+
- SSHKey
173175
- STSSessionToken
174176
- UUID
175177
- VaultDynamicSecret
@@ -306,7 +308,52 @@ spec:
306308
Used to rewrite secret Keys after getting them from the secret Provider
307309
Multiple Rewrite operations can be provided. They are applied in a layered order (first to last)
308310
items:
311+
maxProperties: 1
312+
minProperties: 1
309313
properties:
314+
merge:
315+
description: |-
316+
Used to merge key/values in one single Secret
317+
The resulting key will contain all values from the specified secrets
318+
properties:
319+
conflictPolicy:
320+
default: Error
321+
description: Used to define the policy to use
322+
in conflict resolution.
323+
enum:
324+
- Ignore
325+
- Error
326+
type: string
327+
into:
328+
default: ''
329+
description: |-
330+
Used to define the target key of the merge operation.
331+
Required if strategy is JSON. Ignored otherwise.
332+
type: string
333+
priority:
334+
description: Used to define key priority in
335+
conflict resolution.
336+
items:
337+
type: string
338+
type: array
339+
priorityPolicy:
340+
default: Strict
341+
description: Used to define the policy when
342+
a key in the priority list does not exist
343+
in the input.
344+
enum:
345+
- IgnoreNotFound
346+
- Strict
347+
type: string
348+
strategy:
349+
default: Extract
350+
description: Used to define the strategy to
351+
use in the merge operation.
352+
enum:
353+
- Extract
354+
- JSON
355+
type: string
356+
type: object
310357
regexp:
311358
description: |-
312359
Used to rewrite with regular expressions.
@@ -365,12 +412,14 @@ spec:
365412
enum:
366413
- ACRAccessToken
367414
- ClusterGenerator
415+
- CloudsmithAccessToken
368416
- ECRAuthorizationToken
369417
- Fake
370418
- GCRAccessToken
371419
- GithubAccessToken
372420
- QuayAccessToken
373421
- Password
422+
- SSHKey
374423
- STSSessionToken
375424
- UUID
376425
- VaultDynamicSecret
@@ -523,6 +572,10 @@ spec:
523572
additionalProperties:
524573
type: string
525574
type: object
575+
finalizers:
576+
items:
577+
type: string
578+
type: array
526579
labels:
527580
additionalProperties:
528581
type: string
@@ -938,6 +991,7 @@ spec:
938991
- GithubAccessToken
939992
- QuayAccessToken
940993
- Password
994+
- SSHKey
941995
- STSSessionToken
942996
- UUID
943997
- VaultDynamicSecret
@@ -1073,6 +1127,8 @@ spec:
10731127
Used to rewrite secret Keys after getting them from the secret Provider
10741128
Multiple Rewrite operations can be provided. They are applied in a layered order (first to last)
10751129
items:
1130+
maxProperties: 1
1131+
minProperties: 1
10761132
properties:
10771133
regexp:
10781134
description: |-
@@ -1138,6 +1194,7 @@ spec:
11381194
- GithubAccessToken
11391195
- QuayAccessToken
11401196
- Password
1197+
- SSHKey
11411198
- STSSessionToken
11421199
- UUID
11431200
- VaultDynamicSecret

0 commit comments

Comments
 (0)