logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets


			
				
					
						
						
							1234567891011121314151617181920
							apiVersion: external-secrets.io/v1alpha1
kind: SecretStore
metadata:
  name: example-secret-store
spec:
  # provider type: azure keyvault
  azurekv:
    # azure tenant ID, see: https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-how-to-find-tenant
    tenantId: "d3bc2180-xxxx-xxxx-xxxx-154105743342"
    # URL of your vault instance, see: https://docs.microsoft.com/en-us/azure/key-vault/general/about-keys-secrets-certificates
    vaultUrl: "https://my-keyvault-name.vault.azure.net"
    authSecretRef:
      # points to the secret that contains
      # the azure service principal credentials
      clientId:
        name: azure-secret-sp
        key: ClientID
      clientSecret:
        name: azure-secret-sp
        key: ClientSecret