From 7e432a4297cb37849df532313747361f3ff3fb91 Mon Sep 17 00:00:00 2001 From: DanielHougaard Date: Wed, 7 May 2025 18:26:55 +0000 Subject: [PATCH] Update Helm chart to version v0.9.2 --- helm-charts/secrets-operator/Chart.yaml | 4 +- .../templates/clustergenerator-crd.yaml | 97 +++++++++++++++++++ .../templates/infisicalpushsecret-crd.yaml | 31 +++++- .../templates/manager-rbac.yaml | 12 +++ helm-charts/secrets-operator/values.yaml | 2 +- 5 files changed, 140 insertions(+), 6 deletions(-) create mode 100644 helm-charts/secrets-operator/templates/clustergenerator-crd.yaml diff --git a/helm-charts/secrets-operator/Chart.yaml b/helm-charts/secrets-operator/Chart.yaml index c8bfc3539c..e22529f9ca 100644 --- a/helm-charts/secrets-operator/Chart.yaml +++ b/helm-charts/secrets-operator/Chart.yaml @@ -13,9 +13,9 @@ type: application # This is the chart version. This version number should be incremented each time you make changes # to the chart and its templates, including the app version. # Versions are expected to follow Semantic Versioning (https://semver.org/) -version: v0.9.1 +version: v0.9.2 # This is the version number of the application being deployed. This version number should be # incremented each time you make changes to the application. Versions are not expected to # follow Semantic Versioning. They should reflect the version the application is using. # It is recommended to use it with quotes. -appVersion: "v0.9.1" +appVersion: "v0.9.2" diff --git a/helm-charts/secrets-operator/templates/clustergenerator-crd.yaml b/helm-charts/secrets-operator/templates/clustergenerator-crd.yaml new file mode 100644 index 0000000000..8da166a5e2 --- /dev/null +++ b/helm-charts/secrets-operator/templates/clustergenerator-crd.yaml @@ -0,0 +1,97 @@ +{{- if .Values.installCRDs }} +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + name: clustergenerators.secrets.infisical.com + annotations: + controller-gen.kubebuilder.io/version: v0.10.0 + labels: + {{- include "secrets-operator.labels" . | nindent 4 }} +spec: + group: secrets.infisical.com + names: + kind: ClusterGenerator + listKind: ClusterGeneratorList + plural: clustergenerators + singular: clustergenerator + scope: Cluster + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: ClusterGenerator represents a cluster-wide generator + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + generator: + description: Generator the spec for this generator, must match the kind. + properties: + passwordSpec: + description: PasswordSpec controls the behavior of the password + generator. + properties: + allowRepeat: + default: false + description: set allowRepeat to true to allow repeating characters. + type: boolean + digits: + description: digits specifies the number of digits in the generated + password. If omitted it defaults to 25% of the length of the + password + type: integer + length: + default: 24 + description: Length of the password to be generated. Defaults + to 24 + type: integer + noUpper: + default: false + description: Set noUpper to disable uppercase characters + type: boolean + symbolCharacters: + description: symbolCharacters specifies the special characters + that should be used in the generated password. + type: string + symbols: + description: symbols specifies the number of symbol characters + in the generated password. If omitted it defaults to 25% of + the length of the password + type: integer + type: object + uuidSpec: + description: UUIDSpec controls the behavior of the uuid generator. + type: object + type: object + kind: + description: Kind the kind of this generator. + enum: + - Password + - UUID + type: string + required: + - kind + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +{{- end }} diff --git a/helm-charts/secrets-operator/templates/infisicalpushsecret-crd.yaml b/helm-charts/secrets-operator/templates/infisicalpushsecret-crd.yaml index 5afb4f5196..64ddc3e5ec 100644 --- a/helm-charts/secrets-operator/templates/infisicalpushsecret-crd.yaml +++ b/helm-charts/secrets-operator/templates/infisicalpushsecret-crd.yaml @@ -143,6 +143,34 @@ spec: type: string push: properties: + generators: + items: + properties: + destinationSecretName: + type: string + generatorRef: + properties: + kind: + allOf: + - enum: + - Password + - UUID + - enum: + - Password + - UUID + description: Specify the Kind of the generator resource + type: string + name: + type: string + required: + - kind + - name + type: object + required: + - destinationSecretName + - generatorRef + type: object + type: array secret: properties: secretName: @@ -168,8 +196,6 @@ spec: - secretName - secretNamespace type: object - required: - - secret type: object resyncInterval: type: string @@ -199,7 +225,6 @@ spec: required: - destination - push - - resyncInterval type: object status: description: InfisicalPushSecretStatus defines the observed state of InfisicalPushSecret diff --git a/helm-charts/secrets-operator/templates/manager-rbac.yaml b/helm-charts/secrets-operator/templates/manager-rbac.yaml index 3ab1a74097..93289ca67d 100644 --- a/helm-charts/secrets-operator/templates/manager-rbac.yaml +++ b/helm-charts/secrets-operator/templates/manager-rbac.yaml @@ -81,6 +81,18 @@ rules: - tokenreviews verbs: - create +- apiGroups: + - secrets.infisical.com + resources: + - clustergenerators + verbs: + - create + - delete + - get + - list + - patch + - update + - watch - apiGroups: - secrets.infisical.com resources: diff --git a/helm-charts/secrets-operator/values.yaml b/helm-charts/secrets-operator/values.yaml index cb96f39598..78cfe4ad76 100644 --- a/helm-charts/secrets-operator/values.yaml +++ b/helm-charts/secrets-operator/values.yaml @@ -32,7 +32,7 @@ controllerManager: - ALL image: repository: infisical/kubernetes-operator - tag: v0.9.1 + tag: v0.9.2 resources: limits: cpu: 500m