Deployed 7e5fbb12 to main with MkDocs 1.2.3 and mike 1.1.2

main/api/clustersecretstore/index.html

@@ -1940,7 +1940,7 @@
 <span class="w">      </span><span class="nt">caProvider</span><span class="p">:</span><span class="w"></span>
 <span class="w">        </span><span class="c1"># Can be Secret or ConfigMap</span><span class="w"></span>
 <span class="w">        </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Secret&quot;</span><span class="w"></span>
-<span class="w">        </span><span class="c1"># This is mandatory for ClusterSecretStore and not relevant for SecretStore</span><span class="w"></span>
+<span class="w">        </span><span class="c1"># namespace is mandatory for ClusterSecretStore and not relevant for SecretStore</span><span class="w"></span>
 <span class="w">        </span><span class="nt">namespace</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-cert-secret-namespace&quot;</span><span class="w"></span>
 <span class="w">        </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-cert-secret&quot;</span><span class="w"></span>
 <span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;cert-key&quot;</span><span class="w"></span>

main/api/spec/index.html

@@ -2296,6 +2296,34 @@ AkeylessAuth
 <p>Auth configures how the operator authenticates with Akeyless.</p>
 </td>
 </tr>
+<tr>
+<td>
+<code>caBundle</code></br>
+<em>
+[]byte
+</em>
+</td>
+<td>
+<em>(Optional)</em>
+<p>PEM/base64 encoded CA bundle used to validate Akeyless Gateway certificate. Only used
+if the AkeylessGWApiURL URL is using HTTPS protocol. If not set the system root certificates
+are used to validate the TLS connection.</p>
+</td>
+</tr>
+<tr>
+<td>
+<code>caProvider</code></br>
+<em>
+<a href="#external-secrets.io/v1beta1.CAProvider">
+CAProvider
+</a>
+</em>
+</td>
+<td>
+<em>(Optional)</em>
+<p>The provider for the CA bundle to use to validate Akeyless Gateway certificate.</p>
+</td>
+</tr>
 </tbody>
 </table>
 <h3 id="external-secrets.io/v1beta1.AlibabaAuth">AlibabaAuth
@@ -2653,6 +2681,7 @@ string
 </h3>
 <p>
 (<em>Appears on:</em>
+<a href="#external-secrets.io/v1beta1.AkeylessProvider">AkeylessProvider</a>, 
 <a href="#external-secrets.io/v1beta1.KubernetesServer">KubernetesServer</a>, 
 <a href="#external-secrets.io/v1beta1.VaultProvider">VaultProvider</a>)
 </p>

main/introduction/stability-support/index.html

@@ -2204,8 +2204,8 @@
 </tr>
 <tr>
 <td>Akeyless</td>
-<td align="center"></td>
-<td align="center"></td>
+<td align="center">x</td>
+<td align="center">x</td>
 <td align="center"></td>
 <td align="center"></td>
 <td align="center">x</td>

main/provider/akeyless/index.html

@@ -68,7 +68,7 @@
     <div data-md-component="skip">
       
         
-        <a href="#akeyless-vault" class="md-skip">
+        <a href="#akeyless-secrets-management-platform" class="md-skip">
           Skip to content
         </a>
       
@@ -1317,39 +1317,72 @@
     <ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
       
         <li class="md-nav__item">
-  <a href="#akeyless-vault" class="md-nav__link">
-    Akeyless Vault
+  <a href="#akeyless-secrets-management-platform" class="md-nav__link">
+    Akeyless Secrets Management Platform
   </a>
   
-    <nav class="md-nav" aria-label="Akeyless Vault">
+    <nav class="md-nav" aria-label="Akeyless Secrets Management Platform">
       <ul class="md-nav__list">
         
           <li class="md-nav__item">
-  <a href="#authentication" class="md-nav__link">
-    Authentication
+  <a href="#create-secret-store" class="md-nav__link">
+    Create Secret Store:
   </a>
   
 </li>
         
           <li class="md-nav__item">
-  <a href="#creating-an-akeyless-ccredentials-secret" class="md-nav__link">
-    Creating an Akeyless Ccredentials Secret
+  <a href="#authentication-with-kubernetes" class="md-nav__link">
+    Authentication with Kubernetes:
+  </a>
+  
+    <nav class="md-nav" aria-label="Authentication with Kubernetes:">
+      <ul class="md-nav__list">
+        
+          <li class="md-nav__item">
+  <a href="#create-the-akeyless-secret-store-provider-with-kubernetes-auth-method" class="md-nav__link">
+    Create the Akeyless Secret Store Provider with Kubernetes Auth-Method
   </a>
   
 </li>
         
+      </ul>
+    </nav>
+  
+</li>
+        
+          <li class="md-nav__item">
+  <a href="#authentication-with-cloud-identity-or-api-access-key" class="md-nav__link">
+    Authentication With Cloud-Identity or Api-Access-Key
+  </a>
+  
+    <nav class="md-nav" aria-label="Authentication With Cloud-Identity or Api-Access-Key">
+      <ul class="md-nav__list">
+        
           <li class="md-nav__item">
-  <a href="#update-secret-store" class="md-nav__link">
-    Update Secret Store
+  <a href="#creating-an-akeyless-credentials-secret" class="md-nav__link">
+    Creating an Akeyless Credentials Secret
   </a>
   
 </li>
         
           <li class="md-nav__item">
-  <a href="#authentication-with-kubernetes" class="md-nav__link">
-    Authentication with Kubernetes
+  <a href="#create-the-akeyless-secret-store-provider-with-the-credentials-secret" class="md-nav__link">
+    Create the Akeyless Secret Store Provider with the Credentials Secret
   </a>
   
+</li>
+        
+          <li class="md-nav__item">
+  <a href="#create-the-akeyless-secret-store-with-cas-for-tls-handshake" class="md-nav__link">
+    Create the Akeyless Secret Store With CAs for TLS handshake
+  </a>
+  
+</li>
+        
+      </ul>
+    </nav>
+  
 </li>
         
           <li class="md-nav__item">
@@ -1914,39 +1947,72 @@
     <ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
       
         <li class="md-nav__item">
-  <a href="#akeyless-vault" class="md-nav__link">
-    Akeyless Vault
+  <a href="#akeyless-secrets-management-platform" class="md-nav__link">
+    Akeyless Secrets Management Platform
   </a>
   
-    <nav class="md-nav" aria-label="Akeyless Vault">
+    <nav class="md-nav" aria-label="Akeyless Secrets Management Platform">
       <ul class="md-nav__list">
         
           <li class="md-nav__item">
-  <a href="#authentication" class="md-nav__link">
-    Authentication
+  <a href="#create-secret-store" class="md-nav__link">
+    Create Secret Store:
   </a>
   
 </li>
         
           <li class="md-nav__item">
-  <a href="#creating-an-akeyless-ccredentials-secret" class="md-nav__link">
-    Creating an Akeyless Ccredentials Secret
+  <a href="#authentication-with-kubernetes" class="md-nav__link">
+    Authentication with Kubernetes:
+  </a>
+  
+    <nav class="md-nav" aria-label="Authentication with Kubernetes:">
+      <ul class="md-nav__list">
+        
+          <li class="md-nav__item">
+  <a href="#create-the-akeyless-secret-store-provider-with-kubernetes-auth-method" class="md-nav__link">
+    Create the Akeyless Secret Store Provider with Kubernetes Auth-Method
   </a>
   
 </li>
         
+      </ul>
+    </nav>
+  
+</li>
+        
+          <li class="md-nav__item">
+  <a href="#authentication-with-cloud-identity-or-api-access-key" class="md-nav__link">
+    Authentication With Cloud-Identity or Api-Access-Key
+  </a>
+  
+    <nav class="md-nav" aria-label="Authentication With Cloud-Identity or Api-Access-Key">
+      <ul class="md-nav__list">
+        
           <li class="md-nav__item">
-  <a href="#update-secret-store" class="md-nav__link">
-    Update Secret Store
+  <a href="#creating-an-akeyless-credentials-secret" class="md-nav__link">
+    Creating an Akeyless Credentials Secret
   </a>
   
 </li>
         
           <li class="md-nav__item">
-  <a href="#authentication-with-kubernetes" class="md-nav__link">
-    Authentication with Kubernetes
+  <a href="#create-the-akeyless-secret-store-provider-with-the-credentials-secret" class="md-nav__link">
+    Create the Akeyless Secret Store Provider with the Credentials Secret
   </a>
   
+</li>
+        
+          <li class="md-nav__item">
+  <a href="#create-the-akeyless-secret-store-with-cas-for-tls-handshake" class="md-nav__link">
+    Create the Akeyless Secret Store With CAs for TLS handshake
+  </a>
+  
+</li>
+        
+      </ul>
+    </nav>
+  
 </li>
         
           <li class="md-nav__item">
@@ -2000,10 +2066,50 @@
 
   <h1>Akeyless</h1>
 
-<h2 id="akeyless-vault">Akeyless Vault</h2>
-<p>External Secrets Operator integrates with the <a href="https://docs.akeyless.io/reference#v2">Akeyless API</a>.</p>
-<h3 id="authentication">Authentication</h3>
-<p>To operate the API first define an access-id, access-type and access-Type-param.</p>
+<h2 id="akeyless-secrets-management-platform">Akeyless Secrets Management Platform</h2>
+<p>External Secrets Operator integrates with the <a href="https://www.akeyless.io/">Akeyless Secrets Management Platform</a>.</p>
+<h3 id="create-secret-store">Create Secret Store:</h3>
+<p>SecretStore resource specifies how to access Akeyless. This resource is namespaced.</p>
+<p><strong>NOTE:</strong> Make sure the Akeyless provider is listed in the Kind=SecretStore.
+If you use a customer fragment, define the value of akeylessGWApiURL as the URL of your Akeyless Gateway in the following format: https://your.akeyless.gw:8080/v2.</p>
+<p>Akeyelss provide several Authentication Methods:</p>
+<h3 id="authentication-with-kubernetes">Authentication with Kubernetes:</h3>
+<p>Options for obtaining Kubernetes credentials include:</p>
+<ol>
+<li>Using a service account jwt referenced in serviceAccountRef</li>
+<li>Using the jwt from a Kind=Secret referenced by the secretRef</li>
+<li>Using transient credentials from the mounted service account token within the external-secrets operator</li>
+</ol>
+<h4 id="create-the-akeyless-secret-store-provider-with-kubernetes-auth-method">Create the Akeyless Secret Store Provider with Kubernetes Auth-Method</h4>
+<p><div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1beta1</span><span class="w"></span>
+<span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">SecretStore</span><span class="w"></span>
+<span class="nt">metadata</span><span class="p">:</span><span class="w"></span>
+<span class="w">  </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">akeyless-secret-store</span><span class="w"></span>
+<span class="nt">spec</span><span class="p">:</span><span class="w"></span>
+<span class="w">  </span><span class="nt">provider</span><span class="p">:</span><span class="w"></span>
+<span class="w">    </span><span class="nt">akeyless</span><span class="p">:</span><span class="w"></span>
+<span class="w">      </span><span class="c1"># URL of your akeyless API</span><span class="w"></span>
+<span class="w">      </span><span class="nt">akeylessGWApiURL</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;https://api.akeyless.io&quot;</span><span class="w"></span>
+<span class="w">      </span><span class="nt">authSecretRef</span><span class="p">:</span><span class="w"></span>
+<span class="w">        </span><span class="nt">kubernetesAuth</span><span class="p">:</span><span class="w"></span>
+<span class="w">          </span><span class="nt">accessID</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;p-XXXXXX&quot;</span><span class="w"></span>
+<span class="w">          </span><span class="nt">k8sConfName</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-conf-name&quot;</span><span class="w"></span>
+
+<span class="w">          </span><span class="c1"># Optional service account field containing the name</span><span class="w"></span>
+<span class="w">          </span><span class="c1"># of a kubernetes ServiceAccount</span><span class="w"></span>
+<span class="w">          </span><span class="nt">serviceAccountRef</span><span class="p">:</span><span class="w"></span>
+<span class="w">            </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-sa&quot;</span><span class="w"></span>
+
+<span class="w">          </span><span class="c1"># Optional secret field containing a Kubernetes ServiceAccount JWT</span><span class="w"></span>
+<span class="w">          </span><span class="c1"># used for authenticating with Akeyless</span><span class="w"></span>
+<span class="w">          </span><span class="nt">secretRef</span><span class="p">:</span><span class="w"></span>
+<span class="w">            </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-secret&quot;</span><span class="w"></span>
+<span class="w">            </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;token&quot;</span><span class="w"></span>
+</code></pre></div>
+<strong>NOTE:</strong> In case of a <code>ClusterSecretStore</code>, Be sure to provide <code>namespace</code> for <code>serviceAccountRef</code> and <code>secretRef</code> according to  the namespaces where the secrets reside.</p>
+<h3 id="authentication-with-cloud-identity-or-api-access-key">Authentication With Cloud-Identity or Api-Access-Key</h3>
+<p>Akeyless providers require an access-id, access-type and access-Type-param
+To set your SecretStore with an authentication method from Akeyless.</p>
 <p>The supported auth-methods and their parameters are:</p>
 <table>
 <thead>
@@ -2014,14 +2120,6 @@
 </thead>
 <tbody>
 <tr>
-<td><code>api_key</code></td>
-<td>The access key.</td>
-</tr>
-<tr>
-<td><code>k8s</code></td>
-<td>The k8s configuration name</td>
-</tr>
-<tr>
 <td><code>aws_iam</code></td>
 <td>-</td>
 </tr>
@@ -2033,10 +2131,21 @@
 <td><code>azure_ad</code></td>
 <td>azure object id  (optional)</td>
 </tr>
+<tr>
+<td><code>api_key</code></td>
+<td>The access key.</td>
+</tr>
+<tr>
+<td><code>k8s</code></td>
+<td>The k8s configuration name</td>
+</tr>
+<tr>
+<td>For more information see <a href="https://docs.akeyless.io/docs/access-and-authentication-methods">Akeyless Authentication Methods</a></td>
+<td></td>
+</tr>
 </tbody>
 </table>
-<p>For more information see <a href="https://docs.akeyless.io/docs/access-and-authentication-methods">Akeyless Authentication Methods</a></p>
-<h3 id="creating-an-akeyless-ccredentials-secret">Creating an Akeyless Ccredentials Secret</h3>
+<h4 id="creating-an-akeyless-credentials-secret">Creating an Akeyless Credentials Secret</h4>
 <p>Create a secret containing your credentials using the following example as a guide:</p>
 <div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">v1</span><span class="w"></span>
 <span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">Secret</span><span class="w"></span>
@@ -2045,11 +2154,10 @@
 <span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">Opaque</span><span class="w"></span>
 <span class="nt">stringData</span><span class="p">:</span><span class="w"></span>
 <span class="w">  </span><span class="nt">accessId</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;p-XXXX&quot;</span><span class="w"></span>
-<span class="w">  </span><span class="nt">accessType</span><span class="p">:</span><span class="w">  </span><span class="c1"># k8s/aws_iam/gcp/azure_ad/api_key</span><span class="w"></span>
-<span class="w">  </span><span class="nt">accessTypeParam</span><span class="p">:</span><span class="w">  </span><span class="c1"># can be one of the following: k8s-conf-name/gcp-audience/azure-obj-id/access-key</span><span class="w"></span>
+<span class="w">  </span><span class="nt">accessType</span><span class="p">:</span><span class="w">  </span><span class="c1"># gcp/azure_ad/api_key/k8s/aws_iam</span><span class="w"></span>
+<span class="w">  </span><span class="nt">accessTypeParam</span><span class="p">:</span><span class="w">  </span><span class="c1"># optional: can be one of the following: gcp-audience/azure-obj-id/access-key/k8s-conf-name</span><span class="w"></span>
 </code></pre></div>
-<h3 id="update-secret-store">Update Secret Store</h3>
-<p>Be sure the <code>akeyless</code> provider is listed in the <code>Kind=SecretStore</code> and the <code>akeylessGWApiURL</code> is set (def: "https://api.akeless.io").</p>
+<h4 id="create-the-akeyless-secret-store-provider-with-the-credentials-secret">Create the Akeyless Secret Store Provider with the Credentials Secret</h4>
 <p><div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1beta1</span><span class="w"></span>
 <span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">SecretStore</span><span class="w"></span>
 <span class="nt">metadata</span><span class="p">:</span><span class="w"></span>
@@ -2072,39 +2180,26 @@
 <span class="w">            </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">accessTypeParam</span><span class="w"></span>
 </code></pre></div>
 <strong>NOTE:</strong> In case of a <code>ClusterSecretStore</code>, be sure to provide <code>namespace</code> for <code>accessID</code>, <code>accessType</code> and <code>accessTypeParam</code>  according to the namespaces where the secrets reside.</p>
-<h3 id="authentication-with-kubernetes">Authentication with Kubernetes</h3>
-<p>Options for obtaining Kubernetes credentials include:</p>
-<ol>
-<li>Using a service account jwt referenced in serviceAccountRef</li>
-<li>Using the jwt from a Kind=Secret referenced by the secretRef</li>
-<li>Using transient credentials from the mounted service account token within the external-secrets operator</li>
-</ol>
-<p><div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1beta1</span><span class="w"></span>
-<span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">SecretStore</span><span class="w"></span>
-<span class="nt">metadata</span><span class="p">:</span><span class="w"></span>
-<span class="w">  </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">akeyless-secret-store</span><span class="w"></span>
-<span class="nt">spec</span><span class="p">:</span><span class="w"></span>
+<h4 id="create-the-akeyless-secret-store-with-cas-for-tls-handshake">Create the Akeyless Secret Store With CAs for TLS handshake</h4>
+<div class="highlight"><pre><span></span><code><span class="l l-Scalar l-Scalar-Plain">....</span><span class="w"></span>
+<span class="l l-Scalar l-Scalar-Plain">spec</span><span class="p p-Indicator">:</span><span class="w"></span>
 <span class="w">  </span><span class="nt">provider</span><span class="p">:</span><span class="w"></span>
 <span class="w">    </span><span class="nt">akeyless</span><span class="p">:</span><span class="w"></span>
-<span class="w">      </span><span class="c1"># URL of your akeyless API</span><span class="w"></span>
-<span class="w">      </span><span class="nt">akeylessGWApiURL</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;https://api.akeyless.io&quot;</span><span class="w"></span>
-<span class="w">      </span><span class="nt">authSecretRef</span><span class="p">:</span><span class="w"></span>
-<span class="w">        </span><span class="nt">kubernetesAuth</span><span class="p">:</span><span class="w"></span>
-<span class="w">          </span><span class="nt">accessID</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;p-XXXXXX&quot;</span><span class="w"></span>
-<span class="w">          </span><span class="nt">k8sConfName</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-conf-name&quot;</span><span class="w"></span>
-
-<span class="w">          </span><span class="c1"># Optional service account field containing the name</span><span class="w"></span>
-<span class="w">          </span><span class="c1"># of a kubernetes ServiceAccount</span><span class="w"></span>
-<span class="w">          </span><span class="nt">serviceAccountRef</span><span class="p">:</span><span class="w"></span>
-<span class="w">            </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-sa&quot;</span><span class="w"></span>
-
-<span class="w">          </span><span class="c1"># Optional secret field containing a Kubernetes ServiceAccount JWT</span><span class="w"></span>
-<span class="w">          </span><span class="c1"># used for authenticating with Akeyless</span><span class="w"></span>
-<span class="w">          </span><span class="nt">secretRef</span><span class="p">:</span><span class="w"></span>
-<span class="w">            </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-secret&quot;</span><span class="w"></span>
-<span class="w">            </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;token&quot;</span><span class="w"></span>
+<span class="w">      </span><span class="nt">akeylessGWApiURL</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;https://your.akeyless.gw:8080/v2&quot;</span><span class="w"></span>
+
+<span class="w">      </span><span class="c1"># Optional caBundle - PEM/base64 encoded CA certificate</span><span class="w"></span>
+<span class="w">      </span><span class="nt">caBundle</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;&lt;base64</span><span class="nv"> </span><span class="s">encoded</span><span class="nv"> </span><span class="s">cabundle&gt;&quot;</span><span class="w"></span>
+<span class="w">      </span><span class="c1"># Optional caProvider:</span><span class="w"></span>
+<span class="w">      </span><span class="c1"># Instead of caBundle you can also specify a caProvider</span><span class="w"></span>
+<span class="w">      </span><span class="c1"># this will retrieve the cert from a Secret or ConfigMap</span><span class="w"></span>
+<span class="w">      </span><span class="nt">caProvider</span><span class="p">:</span><span class="w"></span>
+<span class="w">        </span><span class="nt">type</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;Secret/ConfigMap&quot;</span><span class="w"> </span><span class="c1"># Can be Secret or ConfigMap</span><span class="w"></span>
+<span class="w">        </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;&lt;name</span><span class="nv"> </span><span class="s">of</span><span class="nv"> </span><span class="s">secret</span><span class="nv"> </span><span class="s">or</span><span class="nv"> </span><span class="s">configmap&gt;&quot;</span><span class="w"></span>
+<span class="w">        </span><span class="nt">key</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;&lt;key</span><span class="nv"> </span><span class="s">inside</span><span class="nv"> </span><span class="s">secret&gt;&quot;</span><span class="w"></span>
+<span class="w">        </span><span class="c1"># namespace is mandatory for ClusterSecretStore and not relevant for SecretStore</span><span class="w"></span>
+<span class="w">        </span><span class="nt">namespace</span><span class="p">:</span><span class="w"> </span><span class="s">&quot;my-cert-secret-namespace&quot;</span><span class="w"></span>
+<span class="w">  </span><span class="l l-Scalar l-Scalar-Plain">....</span><span class="w"></span>
 </code></pre></div>
-<strong>NOTE:</strong> In case of a <code>ClusterSecretStore</code>, Be sure to provide <code>namespace</code> for <code>serviceAccountRef</code> and <code>secretRef</code> according to  the namespaces where the secrets reside.</p>
 <h3 id="creating-an-external-secret">Creating an external secret</h3>
 <p>To get a secret from Akeyless and create it as a secret on the Kubernetes cluster, a <code>Kind=ExternalSecret</code> is needed.</p>
 <div class="highlight"><pre><span></span><code><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">external-secrets.io/v1beta1</span><span class="w"></span>
@@ -2144,7 +2239,7 @@
 <span class="w">    </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">akeyless-secret-store</span><span class="w"> </span><span class="c1"># Must match SecretStore on the cluster</span><span class="w"></span>
 
 <span class="w">  </span><span class="nt">target</span><span class="p">:</span><span class="w"></span>
-<span class="w">    </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">database-credentials</span><span class="w"> </span><span class="c1"># Name for the secret to be created on the cluster</span><span class="w"></span>
+<span class="w">    </span><span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">database-credentials-json</span><span class="w"> </span><span class="c1"># Name for the secret to be created on the cluster</span><span class="w"></span>
 <span class="w">    </span><span class="nt">creationPolicy</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">Owner</span><span class="w"></span>
 
 <span class="w">  </span><span class="c1"># for json formatted secrets: each key in the json will be used as the secret key in the SECRET k8s target object</span><span class="w"></span>
@@ -2154,9 +2249,9 @@
 </code></pre></div>
 <h3 id="getting-the-kubernetes-secret">Getting the Kubernetes Secret</h3>
 <p>The operator will fetch the secret and inject it as a <code>Kind=Secret</code>.
-<div class="highlight"><pre><span></span><code>kubectl get secret akeyless-secret-to-create -o jsonpath=&#39;{.data.secretKey}&#39; | base64 -d
+<div class="highlight"><pre><span></span><code>kubectl get secret database-credentials -o jsonpath=&#39;{.data.db-password}&#39; | base64 -d
 </code></pre></div></p>
-<div class="highlight"><pre><span></span><code>kubectl get secret akeyless-secret-to-create-json -o jsonpath=&#39;{.data}&#39;
+<div class="highlight"><pre><span></span><code>kubectl get secret database-credentials-json -o jsonpath=&#39;{.data}&#39;
 </code></pre></div>
 
               

main/sitemap.xml

@@ -2,342 +2,342 @@
 <urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
     <url>
          <loc>None</loc>
-         <lastmod>2023-03-06</lastmod>
+         <lastmod>2023-03-07</lastmod>
          <changefreq>daily</changefreq>
     </url>
 </urlset>

main/snippets/akeyless-external-secret-json.yaml

@@ -10,7 +10,7 @@ spec:
     name: akeyless-secret-store # Must match SecretStore on the cluster
 
   target:
-    name: database-credentials # Name for the secret to be created on the cluster
+    name: database-credentials-json # Name for the secret to be created on the cluster
     creationPolicy: Owner
 
   # for json formatted secrets: each key in the json will be used as the secret key in the SECRET k8s target object

main/snippets/full-cluster-secret-store.yaml

@@ -53,7 +53,7 @@ spec:
       caProvider:
         # Can be Secret or ConfigMap
         type: "Secret"
-        # This is mandatory for ClusterSecretStore and not relevant for SecretStore
+        # namespace is mandatory for ClusterSecretStore and not relevant for SecretStore
         namespace: "my-cert-secret-namespace"
         name: "my-cert-secret"
         key: "cert-key"