Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

update crds to inclue client and ca certs but not client private key

ric 4 years ago
parent
daffd18457
commit
7d2d83d695
3 changed files with 8 additions and 11 deletions
Split View Show Diff Stats
  1. 2 3
      apis/externalsecrets/v1alpha1/secretstore_vault_types.go
  2. 3 4
      deploy/crds/external-secrets.io_clustersecretstores.yaml
  3. 3 4
      deploy/crds/external-secrets.io_secretstores.yaml

+ 2 - 3
apis/externalsecrets/v1alpha1/secretstore_vault_types.go
View File 

@@ -177,10 +177,9 @@ type VaultCertAuth struct {
 
 	// +optional
 
 	ClientCert string `json:"clientCert"`
 
 
-	// ClientCert is a certificate to authenticate using the Cert Vault
 
-	// authentication method
 
+	// CACert is the Vault TLS Listener CA certificate
 
 	// +optional
 
-	ClientKey string `json:"clientKey"`
 
+	CACert string `json:"caCert"`
 
 
 	// SecretRef to a key in a Secret resource containing client private key to
 
 	// authenticate with Vault using the Cert authentication method

+ 3 - 4
deploy/crds/external-secrets.io_clustersecretstores.yaml
View File 

@@ -346,11 +346,10 @@ spec:
 
                               by passing client certificate, private key and ca certificate
 
                               Cert authentication method
 
                             properties:
 
-                              clientCert:
 
-                                description: ClientCert is a certificate to authenticate
 
-                                  using the Cert Vault authentication method
 
+                              caCert:
 
+                                description: CACert is the Vault TLS Listener CA certificate
 
                                 type: string
 
-                              clientKey:
 
+                              clientCert:
 
                                 description: ClientCert is a certificate to authenticate
 
                                   using the Cert Vault authentication method
 
                                 type: string

+ 3 - 4
deploy/crds/external-secrets.io_secretstores.yaml
View File 

@@ -346,11 +346,10 @@ spec:
 
                               by passing client certificate, private key and ca certificate
 
                               Cert authentication method
 
                             properties:
 
-                              clientCert:
 
-                                description: ClientCert is a certificate to authenticate
 
-                                  using the Cert Vault authentication method
 
+                              caCert:
 
+                                description: CACert is the Vault TLS Listener CA certificate
 
                                 type: string
 
-                              clientKey:
 
+                              clientCert:
 
                                 description: ClientCert is a certificate to authenticate
 
                                   using the Cert Vault authentication method
 
                                 type: string