f0bdc0231a
Migrate Vault Secrets Operator from Terragrunt to ArgoCD/Kustomize. Deploys vault-secrets-operator v1.2.0 with 3 replicas, plus ClusterRole, ClusterRoleBindings, and vault-admin ServiceAccount. Note: static service account tokens (kubernetes.io/service-account-token) cannot be stored in git; create manually or via Vault after deployment. 💘 Generated with Crush Assisted-by: Claude Sonnet 4.6 via Crush <crush@charm.land> Reviewed-on: #81
25 lines
509 B
YAML
25 lines
509 B
YAML
---
|
|
apiVersion: kustomize.config.k8s.io/v1beta1
|
|
kind: Kustomization
|
|
|
|
namespace: vso-system
|
|
|
|
resources:
|
|
- ../../../base/vso-system
|
|
|
|
helmCharts:
|
|
- name: vault-secrets-operator
|
|
repo: https://helm.releases.hashicorp.com
|
|
version: "1.2.0"
|
|
releaseName: vault-secrets-operator
|
|
namespace: vso-system
|
|
valuesFile: values.yaml
|
|
|
|
patches:
|
|
- path: patch_vaultauth-remove-namespace.yaml
|
|
target:
|
|
group: secrets.hashicorp.com
|
|
version: v1beta1
|
|
kind: VaultAuth
|
|
name: default
|