Strona główna Odkrywaj Pomoc
Zaloguj się
logic855
/
helm-external-secrets
kopia lustrzana https://github.com/external-secrets/external-secrets
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Drzewo: 5a70dfbc12
Gałęzie Tagi
helm-externa...
/
e2e
/
k8s
/
vault.values.yaml

vault.values.yaml 1.0 KB
Historia Czysty

1234567891011121314151617181920212223242526272829303132333435 
  1. injector:
    2. 

  2.   enabled: false
    3. 

  3. server:
    4. 

  4.   extraEnvironmentVars:
    5. 

  5.     VAULT_CACERT: /etc/vault-config/vault-server-ca.pem
    6. 

  6.     VAULT_ADDR: https://127.0.0.1:8200
    7. 

  7.   volumeMounts:
    8. 

  8.     - name: tls-config
    9. 

  9.       mountPath: /etc/vault-config
    10. 

  10.       readOnly: true
    11. 

  11.   volumes:
    12. 

  12.     - name: tls-config
    13. 

  13.       secret:
    14. 

  14.         secretName: vault-tls-config
    15. 

  15.   standalone:
    16. 

  16.     config: |
    17. 

  17.       ui = true
    18. 

  18.       listener "tcp" {
    19. 

  19.         address = "[::]:8200"
    20. 

  20.         cluster_address = "[::]:8201"
    21. 

  21.         tls_cert_file = "/etc/vault-config/server-cert.pem"
    22. 

  22.         tls_key_file = "/etc/vault-config/server-cert-key.pem"
    23. 

  23.         tls_client_ca_file = "/etc/vault-config/vault-client-ca.pem"
    24. 

  24.       }
    25. 

  25.       listener "tcp" {
    26. 

  26.         address = "[::]:8210"
    27. 

  27.         cluster_address = "[::]:8211"
    28. 

  28.         tls_cert_file = "/etc/vault-config/server-cert.pem"
    29. 

  29.         tls_key_file = "/etc/vault-config/server-cert-key.pem"
    30. 

  30.         tls_client_ca_file = "/etc/vault-config/vault-client-ca.pem"
    31. 

  31.         tls_require_and_verify_client_cert = true
    32. 

  32.       }
    33. 

  33.       storage "file" {
    34. 

  34.         path = "/vault/data"
    35. 

  35.       }
    36.