| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 |
- replicaCount: 1
- image:
- repository: ghcr.io/external-secrets/external-secrets
- pullPolicy: IfNotPresent
- # -- The image tag to use. The default is the chart appVersion.
- tag: ""
- # -- If set, install and upgrade CRDs through helm chart.
- installCRDs: true
- imagePullSecrets: []
- nameOverride: ""
- fullnameOverride: ""
- # -- If true, external-secrets will perform leader election between instances to ensure no more
- # than one instance of external-secrets operates at a time.
- leaderElect: false
- # -- If set external secrets will filter matching
- # Secret Stores with the appropriate controller values.
- controllerClass: ""
- # -- If set external secrets are only reconciled in the
- # provided namespace
- scopedNamespace: ""
- # -- Specifies whether an external secret operator deployment be created.
- createOperator: true
- # -- If true, disable ClusterSecretStore.
- # If scopedNamespace is provided, create scoped RBAC roles under the scoped namespace.
- scopedRBAC: false
- # -- Specifies the number of concurrent ExternalSecret Reconciles external-secret executes at
- # a time.
- concurrent: 1
- serviceAccount:
- # -- Specifies whether a service account should be created.
- create: true
- # -- Annotations to add to the service account.
- annotations: {}
- # -- The name of the service account to use.
- # If not set and create is true, a name is generated using the fullname template.
- name: ""
- rbac:
- # -- Specifies whether role and rolebinding resources should be created.
- create: true
- ## -- Extra environment variables to add to container.
- extraEnv: []
- ## -- Map of extra arguments to pass to container.
- extraArgs: {}
- # -- Annotations to add to Deployment
- deploymentAnnotations: {}
- # -- Annotations to add to Pod
- podAnnotations: {}
- podLabels: {}
- podSecurityContext: {}
- # fsGroup: 2000
- securityContext: {}
- # capabilities:
- # drop:
- # - ALL
- # readOnlyRootFilesystem: true
- # runAsNonRoot: true
- # runAsUser: 1000
- resources: {}
- # requests:
- # cpu: 10m
- # memory: 32Mi
- prometheus:
- # -- Specifies whether to expose Service resource for collecting Prometheus metrics
- enabled: false
- service:
- port: 8080
- nodeSelector: {}
- tolerations: []
- affinity: {}
- # -- Pod priority class name.
- priorityClassName: ""
- webhook:
- # -- Specifies whether a webhook deployment be created.
- create: true
- certCheckInterval: "5m"
- replicaCount: 1
- certDir: /tmp/certs
- image:
- repository: ghcr.io/external-secrets/external-secrets
- pullPolicy: IfNotPresent
- # -- The image tag to use. The default is the chart appVersion.
- tag: ""
- imagePullSecrets: []
- nameOverride: ""
- fullnameOverride: ""
- rbac:
- # -- Specifies whether role and rolebinding resources should be created.
- create: true
- serviceAccount:
- # -- Specifies whether a service account should be created.
- create: true
- # -- Annotations to add to the service account.
- annotations: {}
- # -- The name of the service account to use.
- # If not set and create is true, a name is generated using the fullname template.
- name: ""
- nodeSelector: {}
- tolerations: []
- affinity: {}
- # -- Pod priority class name.
- priorityClassName: ""
- prometheus:
- # -- Specifies whether to expose Service resource for collecting Prometheus metrics
- enabled: false
- service:
- port: 8080
- ## -- Extra environment variables to add to container.
- extraEnv: []
- ## -- Map of extra arguments to pass to container.
- extraArgs: {}
- # -- Annotations to add to Deployment
- deploymentAnnotations: {}
- # -- Annotations to add to Pod
- podAnnotations: {}
- podLabels: {}
- podSecurityContext: {}
- # fsGroup: 2000
- securityContext: {}
- # capabilities:
- # drop:
- # - ALL
- # readOnlyRootFilesystem: true
- # runAsNonRoot: true
- # runAsUser: 1000
- resources: {}
- # requests:
- # cpu: 10m
- # memory: 32Mi
- certController:
- # -- Specifies whether a certificate controller deployment be created.
- create: true
- requeueInterval: "5m"
- image:
- repository: ghcr.io/external-secrets/external-secrets
- pullPolicy: IfNotPresent
- tag: ""
- imagePullSecrets: []
- nameOverride: ""
- fullnameOverride: ""
- rbac:
- # -- Specifies whether role and rolebinding resources should be created.
- create: true
- serviceAccount:
- # -- Specifies whether a service account should be created.
- create: true
- # -- Annotations to add to the service account.
- annotations: {}
- # -- The name of the service account to use.
- # If not set and create is true, a name is generated using the fullname template.
- name: ""
- nodeSelector: {}
- tolerations: []
- affinity: {}
- # -- Pod priority class name.
- priorityClassName: ""
- prometheus:
- # -- Specifies whether to expose Service resource for collecting Prometheus metrics
- enabled: false
- service:
- port: 8080
- ## -- Extra environment variables to add to container.
- extraEnv: []
- ## -- Map of extra arguments to pass to container.
- extraArgs: {}
- # -- Annotations to add to Deployment
- deploymentAnnotations: {}
- # -- Annotations to add to Pod
- podAnnotations: {}
- podLabels: {}
- podSecurityContext: {}
- # fsGroup: 2000
- securityContext: {}
- # capabilities:
- # drop:
- # - ALL
- # readOnlyRootFilesystem: true
- # runAsNonRoot: true
- # runAsUser: 1000
- resources: {}
- # requests:
- # cpu: 10m
- # memory: 32Mi
|
