logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116
							apiVersion: external-secrets.io/v1
kind: ClusterExternalSecret
metadata: {}
spec:
  externalSecretMetadata:
    annotations: {}
    labels: {}
  externalSecretName: string
  externalSecretSpec:
    data:
    - remoteRef:
        conversionStrategy: "Default"
        decodingStrategy: "None"
        key: string
        metadataPolicy: "None"
        property: string
        version: string
      secretKey: string
      sourceRef:
        generatorRef:
          apiVersion: external-secrets.io/v1
          kind: "ACRAccessToken" # "ACRAccessToken", "ClusterGenerator", "CloudsmithAccessToken", "ECRAuthorizationToken", "Fake", "GCRAccessToken", "GithubAccessToken", "QuayAccessToken", "Password", "SSHKey", "STSSessionToken", "UUID", "VaultDynamicSecret", "Webhook", "Grafana", "MFA"
          name: string
        storeRef:
          kind: "SecretStore" # "SecretStore", "ClusterSecretStore"
          name: string
    dataFrom:
    - extract:
        conversionStrategy: "Default"
        decodingStrategy: "None"
        key: string
        metadataPolicy: "None"
        property: string
        version: string
      find:
        conversionStrategy: "Default"
        decodingStrategy: "None"
        name:
          regexp: string
        path: string
        tags: {}
      rewrite:
      - merge:
          conflictPolicy: "Error"
          into: ""
          priority: [] # minItems 0 of type string
          strategy: "Extract"
        regexp:
          source: string
          target: string
        transform:
          template: string
      sourceRef:
        generatorRef:
          apiVersion: external-secrets.io/v1
          kind: "ACRAccessToken" # "ACRAccessToken", "ClusterGenerator", "CloudsmithAccessToken", "ECRAuthorizationToken", "Fake", "GCRAccessToken", "GithubAccessToken", "QuayAccessToken", "Password", "SSHKey", "STSSessionToken", "UUID", "VaultDynamicSecret", "Webhook", "Grafana", "MFA"
          name: string
        storeRef:
          kind: "SecretStore" # "SecretStore", "ClusterSecretStore"
          name: string
    refreshInterval: "1h"
    refreshPolicy: "CreatedOnce" # "CreatedOnce", "Periodic", "OnChange"
    secretStoreRef:
      kind: "SecretStore" # "SecretStore", "ClusterSecretStore"
      name: string
    target:
      creationPolicy: "Owner"
      deletionPolicy: "Retain"
      immutable: true
      name: string
      template:
        data: {}
        engineVersion: "v2"
        mergePolicy: "Replace"
        metadata:
          annotations: {}
          finalizers: [] # minItems 0 of type string
          labels: {}
        templateFrom:
        - configMap:
            items:
            - key: string
              templateAs: "Values"
            name: string
          literal: string
          secret:
            items:
            - key: string
              templateAs: "Values"
            name: string
          target: "Data"
        type: string
  namespaceSelector:
    matchExpressions:
    - key: string
      operator: string
      values: [] # minItems 0 of type string
    matchLabels: {}
  namespaceSelectors:
  - matchExpressions:
    - key: string
      operator: string
      values: [] # minItems 0 of type string
    matchLabels: {}
  namespaces: [] # minItems 0 of type string
  refreshTime: string
status:
  conditions:
  - message: string
    status: string
    type: string
  externalSecretName: string
  failedNamespaces:
  - namespace: string
    reason: string
  provisionedNamespaces: [] # minItems 0 of type string