9 maanden geleden · 646882e333
--- a/main/api/spec/index.html
+++ b/main/api/spec/index.html
@@ -5497,6 +5497,45 @@ External Secrets meta/v1.SecretKeySelector
 
				 </tr>
			
 
				 </tbody>
			
 
				 </table>
			
 
				+<h3 id="external-secrets.io/v1.ByID">ByID
			
 
				+</h3>
			
 
				+<p>
			
 
				+(<em>Appears on:</em>
			
 
				+<a href="#external-secrets.io/v1.FetchingPolicy">FetchingPolicy</a>)
			
 
				+</p>
			
 
				+<p>
			
 
				+<p>ByID configures the provider to interpret the <code>data.secretKey.remoteRef.key</code> field in ExternalSecret as secret ID.</p>
			
 
				+</p>
			
 
				+<h3 id="external-secrets.io/v1.ByName">ByName
			
 
				+</h3>
			
 
				+<p>
			
 
				+(<em>Appears on:</em>
			
 
				+<a href="#external-secrets.io/v1.FetchingPolicy">FetchingPolicy</a>)
			
 
				+</p>
			
 
				+<p>
			
 
				+<p>ByName configures the provider to interpret the <code>data.secretKey.remoteRef.key</code> field in ExternalSecret as secret name.</p>
			
 
				+</p>
			
 
				+<table>
			
 
				+<thead>
			
 
				+<tr>
			
 
				+<th>Field</th>
			
 
				+<th>Description</th>
			
 
				+</tr>
			
 
				+</thead>
			
 
				+<tbody>
			
 
				+<tr>
			
 
				+<td>
			
 
				+<code>folderID</code></br>
			
 
				+<em>
			
 
				+string
			
 
				+</em>
			
 
				+</td>
			
 
				+<td>
			
 
				+<p>The folder to fetch secrets from</p>
			
 
				+</td>
			
 
				+</tr>
			
 
				+</tbody>
			
 
				+</table>
			
 
				 <h3 id="external-secrets.io/v1.CAProvider">CAProvider
			
 
				 </h3>
			
 
				 <p>
			
@@ -8705,6 +8744,49 @@ string
 
				 </tr>
			
 
				 </tbody>
			
 
				 </table>
			
 
				+<h3 id="external-secrets.io/v1.FetchingPolicy">FetchingPolicy
			
 
				+</h3>
			
 
				+<p>
			
 
				+(<em>Appears on:</em>
			
 
				+<a href="#external-secrets.io/v1.YandexCertificateManagerProvider">YandexCertificateManagerProvider</a>, 
			
 
				+<a href="#external-secrets.io/v1.YandexLockboxProvider">YandexLockboxProvider</a>)
			
 
				+</p>
			
 
				+<p>
			
 
				+</p>
			
 
				+<table>
			
 
				+<thead>
			
 
				+<tr>
			
 
				+<th>Field</th>
			
 
				+<th>Description</th>
			
 
				+</tr>
			
 
				+</thead>
			
 
				+<tbody>
			
 
				+<tr>
			
 
				+<td>
			
 
				+<code>byID</code></br>
			
 
				+<em>
			
 
				+<a href="#external-secrets.io/v1.ByID">
			
 
				+ByID
			
 
				+</a>
			
 
				+</em>
			
 
				+</td>
			
 
				+<td>
			
 
				+</td>
			
 
				+</tr>
			
 
				+<tr>
			
 
				+<td>
			
 
				+<code>byName</code></br>
			
 
				+<em>
			
 
				+<a href="#external-secrets.io/v1.ByName">
			
 
				+ByName
			
 
				+</a>
			
 
				+</em>
			
 
				+</td>
			
 
				+<td>
			
 
				+</td>
			
 
				+</tr>
			
 
				+</tbody>
			
 
				+</table>
			
 
				 <h3 id="external-secrets.io/v1.FindName">FindName
			
 
				 </h3>
			
 
				 <p>
			
@@ -15117,6 +15199,20 @@ YandexCAProvider
 
				 <p>The provider for the CA bundle to use to validate Yandex.Cloud server certificate.</p>
			
 
				 </td>
			
 
				 </tr>
			
 
				+<tr>
			
 
				+<td>
			
 
				+<code>fetching</code></br>
			
 
				+<em>
			
 
				+<a href="#external-secrets.io/v1.FetchingPolicy">
			
 
				+FetchingPolicy
			
 
				+</a>
			
 
				+</em>
			
 
				+</td>
			
 
				+<td>
			
 
				+<em>(Optional)</em>
			
 
				+<p>FetchingPolicy configures the provider to interpret the <code>data.secretKey.remoteRef.key</code> field in ExternalSecret as certificate ID or certificate name</p>
			
 
				+</td>
			
 
				+</tr>
			
 
				 </tbody>
			
 
				 </table>
			
 
				 <h3 id="external-secrets.io/v1.YandexLockboxProvider">YandexLockboxProvider
			
@@ -15175,6 +15271,20 @@ YandexCAProvider
 
				 <p>The provider for the CA bundle to use to validate Yandex.Cloud server certificate.</p>
			
 
				 </td>
			
 
				 </tr>
			
 
				+<tr>
			
 
				+<td>
			
 
				+<code>fetching</code></br>
			
 
				+<em>
			
 
				+<a href="#external-secrets.io/v1.FetchingPolicy">
			
 
				+FetchingPolicy
			
 
				+</a>
			
 
				+</em>
			
 
				+</td>
			
 
				+<td>
			
 
				+<em>(Optional)</em>
			
 
				+<p>FetchingPolicy configures the provider to interpret the <code>data.secretKey.remoteRef.key</code> field in ExternalSecret as secret ID or secret name</p>
			
 
				+</td>
			
 
				+</tr>
			
 
				 </tbody>
			
 
				 </table>
			
 
				 <hr/>
			
--- a/main/provider/yandex-certificate-manager/index.html
+++ b/main/provider/yandex-certificate-manager/index.html
@@ -4061,6 +4061,12 @@ for secret management.</p>
 
				 <span class="w">        </span><span class="nt">authorizedKeySecretRef</span><span class="p">:</span>
			
 
				 <span class="w">          </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">yc-auth</span>
			
 
				 <span class="w">          </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">authorized-key</span>
			
 
				+
			
 
				+<span class="w">    </span><span class="c1"># Optionally, to enable fetching secrets by name:</span>
			
 
				+<span class="w">    </span><span class="c1">#</span>
			
 
				+<span class="w">    </span><span class="c1"># fetching: # place &quot;fetching:&quot; on the same level as &quot;auth:&quot;</span>
			
 
				+<span class="w">    </span><span class="c1">#   byName:</span>
			
 
				+<span class="w">    </span><span class="c1">#     folderId: ***** # ID of the folder to fetch certificates from</span>
			
 
				 </code></pre></div></li>
			
 
				 </ul>
			
 
				 <p><strong>NOTE:</strong> In case of a <code>ClusterSecretStore</code>, Be sure to provide <code>namespace</code> in all <code>authorizedKeySecretRef</code> with the namespace where the secret resides.</p>
			
@@ -4096,11 +4102,11 @@ Run the following command to ensure that the correct access binding has been add
 
				 <span class="w">  </span><span class="nt">data</span><span class="p">:</span>
			
 
				 <span class="w">    </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">secretKey</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">tls.crt</span><span class="w"> </span><span class="c1"># the target k8s secret key</span>
			
 
				 <span class="w">      </span><span class="nt">remoteRef</span><span class="p">:</span>
			
 
				-<span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># the certificate ID</span>
			
 
				+<span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># either ID or name of the certificate, depending on fetching policy byID / byName</span>
			
 
				 <span class="w">        </span><span class="nt">property</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">chain</span>
			
 
				 <span class="w">    </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">secretKey</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">tls.key</span><span class="w"> </span><span class="c1"># the target k8s secret key</span>
			
 
				 <span class="w">      </span><span class="nt">remoteRef</span><span class="p">:</span>
			
 
				-<span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># the certificate ID</span>
			
 
				+<span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># either ID or name of the certificate, depending on fetching policy byID / byName</span>
			
 
				 <span class="w">        </span><span class="nt">property</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">privateKey</span>
			
 
				 </code></pre></div>
			
 
				 The following property values are possible:<ul>
			
--- a/main/provider/yandex-lockbox/index.html
+++ b/main/provider/yandex-lockbox/index.html
@@ -4061,6 +4061,12 @@ for secret management.</p>
 
				 <span class="w">        </span><span class="nt">authorizedKeySecretRef</span><span class="p">:</span>
			
 
				 <span class="w">          </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">yc-auth</span>
			
 
				 <span class="w">          </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">authorized-key</span>
			
 
				+
			
 
				+<span class="w">    </span><span class="c1"># Optionally, to enable fetching secrets by name:</span>
			
 
				+<span class="w">    </span><span class="c1">#</span>
			
 
				+<span class="w">    </span><span class="c1"># fetching: # place &quot;fetching:&quot; on the same level as &quot;auth:&quot;</span>
			
 
				+<span class="w">    </span><span class="c1">#   byName:</span>
			
 
				+<span class="w">    </span><span class="c1">#     folderId: ***** # ID of the folder to fetch secrets from</span>
			
 
				 </code></pre></div></li>
			
 
				 </ul>
			
 
				 <p><strong>NOTE:</strong> In case of a <code>ClusterSecretStore</code>, Be sure to provide <code>namespace</code> in all <code>authorizedKeySecretRef</code> with the namespace where the secret resides.</p>
			
@@ -4097,12 +4103,12 @@ Run the following command to ensure that the correct access binding has been add
 
				 <span class="w">  </span><span class="nt">data</span><span class="p">:</span>
			
 
				 <span class="w">  </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="nt">secretKey</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">password</span><span class="w"> </span><span class="c1"># the target k8s secret key</span>
			
 
				 <span class="w">    </span><span class="nt">remoteRef</span><span class="p">:</span>
			
 
				-<span class="w">      </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># ID of lockbox-secret</span>
			
 
				+<span class="w">      </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="err">*****</span><span class="w"> </span><span class="c1"># either ID or name of the secret, depending on fetching policy byID / byName</span>
			
 
				 <span class="w">      </span><span class="nt">property</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">password</span><span class="w"> </span><span class="c1"># (optional) payload entry key of lockbox-secret</span>
			
 
				 </code></pre></div></li>
			
 
				 </ul>
			
 
				 <p>The operator will fetch the Yandex Lockbox secret and inject it as a <code>Kind=Secret</code>
			
 
				-<div class="highlight"><pre><span></span><code><span class="l l-Scalar l-Scalar-Plain">kubectl get secret k8s-secret -n &lt;namespace&gt; | -o jsonpath=&#39;{.data.password}&#39; | base64 -d</span>
			
 
				+<div class="highlight"><pre><span></span><code><span class="l l-Scalar l-Scalar-Plain">kubectl get secret k8s-secret -n &lt;namespace&gt; -o jsonpath=&#39;{.data.password}&#39; | base64 -d</span>
			
 
				 </code></pre></div></p>
			
 
				 
			
 
				 
			
--- a/main/search/search_index.json
+++ b/main/search/search_index.json