Merge pull request 'chore: add puppet k8s role' (#46) from benvin/puppet_secrets into master

Reviewed-on: #46

config/auth_kubernetes_role/k8s/au/syd1/puppet.yaml

@@ -0,0 +1,6 @@
+bound_service_account_names:
+  - default
+bound_service_account_namespaces:
+  - puppet
+token_ttl: 60
+audience: vault

policies/kv/service/puppet/puppetboard-secret-key/read.yaml

@@ -0,0 +1,9 @@
+---
+rules:
+  - path: "kv/data/service/puppet/puppetboard-secret-key"
+    capabilities:
+      - read
+
+auth:
+  k8s/au/syd1:
+    - puppet

policies/kv/service/puppet/puppetdb-postgresql-credentials/read.yaml

@@ -0,0 +1,9 @@
+---
+rules:
+  - path: "kv/data/service/puppet/puppetdb-postgresql-credentials"
+    capabilities:
+      - read
+
+auth:
+  k8s/au/syd1:
+    - puppet

resources/secret_backend/kubernetes/au/syd1/roles/cluster-admin.yaml

@@ -3,6 +3,7 @@ rules:
   - apiGroups:
       - ""
       - "postgresql.cnpg.io"
+      - "poolers.postgresql.cnpg.io"
       - "cert-manager.io"
       - "rbac.authorization.k8s.io"
       - "batch"

resources/secret_backend/kubernetes/au/syd1/roles/cluster-operator.yaml

@@ -3,6 +3,7 @@ rules:
   - apiGroups:
       - ""
       - "postgresql.cnpg.io"
+      - "poolers.postgresql.cnpg.io"
       - "cert-manager.io"
       - "rbac.authorization.k8s.io"
       - "batch"