Browse Source

Deployed 9934cf52 to main with MkDocs 1.6.1 and mike 1.2.0.dev0

Skarlso 1 year ago
parent
commit
314c2b1906

+ 38 - 6
main/provider/aws-parameter-store/index.html

@@ -3846,7 +3846,11 @@ Please estimate your costs before using ESO. Cost depends on the RefreshInterval
 <span class="w">          </span><span class="nt">remoteKey</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">my-first-parameter</span><span class="w"> </span><span class="c1"># Remote reference (where the secret is going to be pushed)</span>
 </code></pre></div>
 <h4 id="additional-metadata-for-pushsecret">Additional Metadata for PushSecret</h4>
-<p>Optionally, it is possible to configure additional options for the parameter such as <code>Type</code> and encryption Key. To control this behaviour you can set the following provider's <code>metadata</code>:</p>
+<p>Optionally, it is possible to configure additional options for the parameter. These are as follows:
+- type
+- keyID
+- tier &amp; policies</p>
+<p>To control this behaviour you can set the following provider's <code>metadata</code>:</p>
 <div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1alpha1</span>
 <span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">PushSecret</span>
 <span class="nt">metadata</span><span class="p">:</span>
@@ -3866,13 +3870,41 @@ Please estimate your costs before using ESO. Cost depends on the RefreshInterval
 <span class="w">        </span><span class="nt">remoteRef</span><span class="p">:</span>
 <span class="w">          </span><span class="nt">remoteKey</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">my-first-parameter</span><span class="w"> </span><span class="c1"># Remote reference (where the secret is going to be pushed)</span>
 <span class="w">      </span><span class="nt">metadata</span><span class="p">:</span>
-<span class="w">        </span><span class="nt">parameterStoreType</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;SecureString&quot;</span>
-<span class="w">        </span><span class="nt">parameterStoreKeyID</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;bb123123-b2b0-4f60-ac3a-44a13f0e6b6c&quot;</span>
+<span class="w">        </span><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">kubernetes.external-secrets.io/v1alpha1</span>
+<span class="w">        </span><span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">PushSecretMetadata</span>
+<span class="w">        </span><span class="nt">spec</span><span class="p">:</span>
+<span class="w">          </span><span class="nt">secretType</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">SecureString</span>
+<span class="w">          </span><span class="nt">kmsKeyID</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">bb123123-b2b0-4f60-ac3a-44a13f0e6b6c</span>
+<span class="w">          </span><span class="nt">tier</span><span class="p">:</span>
+<span class="w">            </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">Advanced</span><span class="w"> </span><span class="c1"># default is Standard</span>
+<span class="w">            </span><span class="nt">policies</span><span class="p">:</span>
+<span class="w">              </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Expiration&quot;</span>
+<span class="w">                </span><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;1.0&quot;</span>
+<span class="w">                </span><span class="nt">attributes</span><span class="p">:</span>
+<span class="w">                  </span><span class="nt">timestamp</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;2024-12-02T21:34:33.000Z&quot;</span>
+<span class="w">              </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;ExpirationNotification&quot;</span>
+<span class="w">                </span><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;1.0&quot;</span>
+<span class="w">                </span><span class="nt">attributes</span><span class="p">:</span>
+<span class="w">                  </span><span class="nt">before</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;2&quot;</span>
+<span class="w">                  </span><span class="nt">unit</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Days&quot;</span>
+<span class="w">              </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;ExpirationNotification&quot;</span>
+<span class="w">                </span><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;1.0&quot;</span>
+<span class="w">                </span><span class="nt">attributes</span><span class="p">:</span>
+<span class="w">                  </span><span class="nt">before</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;30&quot;</span>
+<span class="w">                  </span><span class="nt">unit</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Days&quot;</span>
+<span class="w">              </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;NoChangeNotification&quot;</span>
+<span class="w">                </span><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;1.0&quot;</span>
+<span class="w">                </span><span class="nt">attributes</span><span class="p">:</span>
+<span class="w">                  </span><span class="nt">after</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;30&quot;</span>
+<span class="w">                  </span><span class="nt">unit</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Days&quot;</span>
 </code></pre></div>
-<p><code>parameterStoreType</code> takes three options. <code>String</code>, <code>StringList</code>, and <code>SecureString</code>, where <code>String</code> is the <em>default</em>.</p>
-<p><code>parameterStoreKeyID</code> takes a KMS Key <code>$ID</code> or <code>$ARN</code> (in case a key source is created in another account) as a string, where <code>alias/aws/ssm</code> is the <em>default</em>. This property is only used if <code>parameterStoreType</code> is set as <code>SecureString</code>.</p>
+<ul>
+<li><code>secretType</code> takes three options. <code>String</code>, <code>StringList</code>, and <code>SecureString</code>, where <code>String</code> is the <em>default</em></li>
+<li><code>kmsKeyID</code> takes a KMS Key <code>$ID</code> or <code>$ARN</code> (in case a key source is created in another account) as a string, where <code>alias/aws/ssm</code> is the <em>default</em>. This property is only used if <code>secretType</code> is set as <code>SecureString</code>.</li>
+<li></li>
+</ul>
 <h4 id="check-successful-secret-sync">Check successful secret sync</h4>
-<p>To be able to check that the secret has been succesfully synced you can run the following command:</p>
+<p>To be able to check that the secret has been successfully synced you can run the following command:</p>
 <div class="highlight"><pre><span></span><code>kubectl<span class="w"> </span>get<span class="w"> </span>pushsecret<span class="w"> </span>pushsecret-example
 </code></pre></div>
 <p>If the secret has synced successfully it will show the status as "Synced".</p>

File diff suppressed because it is too large
+ 0 - 0
main/search/search_index.json


BIN
main/sitemap.xml.gz


+ 27 - 2
main/snippets/aws-pm-push-secret-with-metadata.yaml

@@ -17,5 +17,30 @@ spec:
         remoteRef:
           remoteKey: my-first-parameter # Remote reference (where the secret is going to be pushed)
       metadata:
-        parameterStoreType: "SecureString"
-        parameterStoreKeyID: "bb123123-b2b0-4f60-ac3a-44a13f0e6b6c"
+        apiVersion: kubernetes.external-secrets.io/v1alpha1
+        kind: PushSecretMetadata
+        spec:
+          secretType: SecureString
+          kmsKeyID: bb123123-b2b0-4f60-ac3a-44a13f0e6b6c
+          tier:
+            type: Advanced # default is Standard
+            policies:
+              - type: "Expiration"
+                version: "1.0"
+                attributes:
+                  timestamp: "2024-12-02T21:34:33.000Z"
+              - type: "ExpirationNotification"
+                version: "1.0"
+                attributes:
+                  before: "2"
+                  unit: "Days"
+              - type: "ExpirationNotification"
+                version: "1.0"
+                attributes:
+                  before: "30"
+                  unit: "Days"
+              - type: "NoChangeNotification"
+                version: "1.0"
+                attributes:
+                  after: "30"
+                  unit: "Days"

Some files were not shown because too many files changed in this diff