|
@@ -12,14 +12,13 @@ Exernal Secrets comes with three components: `Core Controller`, `Webhook` and `C
|
|
|
This is due to the need to implement conversion webhooks in order to convert custom resources between api versions and
|
|
This is due to the need to implement conversion webhooks in order to convert custom resources between api versions and
|
|
|
to provide a ValidatingWebhook for the `ExternalSecret` and `SecretStore` resources.
|
|
to provide a ValidatingWebhook for the `ExternalSecret` and `SecretStore` resources.
|
|
|
|
|
|
|
|
-These features are optional but highly recommended. You can disable them with helm chart values `certController.create=false` and `webhook.create=false`.
|
|
|
|
|
|
|
+These features are optional but highly recommended. You can disable them with helm chart values `certController.create=false`, `webhook.create=false` and `crds.conversion.enabled=false`.
|
|
|
|
|
|
|
|
<br/>
|
|
<br/>
|
|
|
|
|
|
|
|
|
|
|
|
|
-
|
|
|
|
|
### TLS Bootstrap
|
|
### TLS Bootstrap
|
|
|
|
|
|
|
|
Cert-controller is responsible for (1) generating TLS credentials which will be used by the webhook component and (2) injecting the certificate as `caBundle` into `Kind=CustomResourceDefinition` for conversion webhooks and `Kind=ValidatingWebhookConfiguration` for validating admission webhook. The TLS credentials are stored in a `Kind=Secret` which is consumed by the webhook.
|
|
Cert-controller is responsible for (1) generating TLS credentials which will be used by the webhook component and (2) injecting the certificate as `caBundle` into `Kind=CustomResourceDefinition` for conversion webhooks and `Kind=ValidatingWebhookConfiguration` for validating admission webhook. The TLS credentials are stored in a `Kind=Secret` which is consumed by the webhook.
|
|
|
|
|
|
|
|
-{: style="width:70%;"}
|
|
|
|
|
|
|
+{: style="width:70%;"}
|
Matías Arranz García