diff --git a/charts/umbrella/Chart.yaml b/charts/umbrella/Chart.yaml index aed02735..c75029a2 100644 --- a/charts/umbrella/Chart.yaml +++ b/charts/umbrella/Chart.yaml @@ -31,13 +31,6 @@ type: application version: 0.2.2 dependencies: - - alias: certsconsumer - name: certs - version: 0.1.0 - - alias: certsprovider - name: certs - version: 0.1.0 - # edc consumer - alias: edcconsumer name: tractusx-connector-legacy diff --git a/charts/umbrella/charts/certs/.helmignore b/charts/umbrella/charts/certs/.helmignore deleted file mode 100644 index a5314292..00000000 --- a/charts/umbrella/charts/certs/.helmignore +++ /dev/null @@ -1,46 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -# Patterns to ignore when building packages. -# This supports shell glob matching, relative path matching, and -# negation (prefixed with !). Only one pattern per line. -.DS_Store -# Common VCS dirs -.git/ -.gitignore -.bzr/ -.bzrignore -.hg/ -.hgignore -.svn/ -# Common backup files -*.swp -*.bak -*.tmp -*.orig -*~ -# Various IDEs -.project -.idea/ -*.tmproj -.vscode/ - -# Ignore ENV specific values at release -values?*.yaml -values?*.yml diff --git a/charts/umbrella/charts/certs/Chart.yaml b/charts/umbrella/charts/certs/Chart.yaml deleted file mode 100644 index 4707ac71..00000000 --- a/charts/umbrella/charts/certs/Chart.yaml +++ /dev/null @@ -1,28 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -apiVersion: v2 -name: certs -description: | - A Helm chart for generating and managing DAPS certificates. - - This chart will generate DAPS certificates and push them into vault and DAPS. - -type: application -version: 0.1.0 diff --git a/charts/umbrella/charts/certs/templates/_helpers.tpl b/charts/umbrella/charts/certs/templates/_helpers.tpl deleted file mode 100644 index 652acd96..00000000 --- a/charts/umbrella/charts/certs/templates/_helpers.tpl +++ /dev/null @@ -1,83 +0,0 @@ -{{/* -***************************************************************************** -* Copyright (c) 2023 Contributors to the Eclipse Foundation -* -* See the NOTICE file(s) distributed with this work for additional -* information regarding copyright ownership. -* -* This program and the accompanying materials are made available under the -* terms of the Apache License, Version 2.0 which is available at -* https://www.apache.org/licenses/LICENSE-2.0. -* -* Unless required by applicable law or agreed to in writing, software -* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -* License for the specific language governing permissions and limitations -* under the License. -* -* SPDX-License-Identifier: Apache-2.0 -***************************************************************************** -*/}} - -{{/* -Expand the name of the chart. -*/}} -{{- define "app.name" -}} -{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }} -{{- end }} - -{{/* -Create a default fully qualified app name. -We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec). -If release name contains chart name it will be used as a full name. -*/}} -{{- define "app.fullname" -}} -{{- if .Values.fullnameOverride }} -{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }} -{{- else }} -{{- $name := default .Chart.Name .Values.nameOverride }} -{{- if contains $name .Release.Name }} -{{- .Release.Name | trunc 63 | trimSuffix "-" }} -{{- else }} -{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }} -{{- end }} -{{- end }} -{{- end }} - -{{/* -Create chart name and version as used by the chart label. -*/}} -{{- define "app.chart" -}} -{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }} -{{- end }} - -{{/* -Common labels -*/}} -{{- define "app.labels" -}} -helm.sh/chart: {{ include "app.chart" . }} -{{ include "app.selectorLabels" . }} -{{- if .Chart.AppVersion }} -app.kubernetes.io/version: {{ .Chart.AppVersion | quote }} -{{- end }} -app.kubernetes.io/managed-by: {{ .Release.Service }} -{{- end }} - -{{/* -Selector labels -*/}} -{{- define "app.selectorLabels" -}} -app.kubernetes.io/name: {{ include "app.name" . }} -app.kubernetes.io/instance: {{ .Release.Name }} -{{- end }} - -{{/* -Create the name of the service account to use -*/}} -{{- define "app.serviceAccountName" -}} -{{- if .Values.serviceAccount.create }} -{{- default (include "app.fullname" .) .Values.serviceAccount.name }} -{{- else }} -{{- default "default" .Values.serviceAccount.name }} -{{- end }} -{{- end }} diff --git a/charts/umbrella/charts/certs/templates/configmap-daps.yaml b/charts/umbrella/charts/certs/templates/configmap-daps.yaml deleted file mode 100644 index 247eb929..00000000 --- a/charts/umbrella/charts/certs/templates/configmap-daps.yaml +++ /dev/null @@ -1,101 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -kind: ConfigMap -apiVersion: v1 -metadata: - name: {{ include "app.fullname" . }}-cert-transfer-daps-script -data: - entrypoint.sh: | - #!/bin/sh - set -e - - echo "Transfering certificates to DAPS (${DAPS_ADDR})..." - sleep 5 - - echo "Check DAPS..." - # loop trouble with BusyBox - # for i in {1..5}; do - for i in 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24; do - if curl --silent --output /dev/null ${DAPS_ADDR}; then - echo "DAPS ready..." - break - fi - echo "DAPS not yet ready..." - sleep 5 - done - - curl --silent --output /dev/null ${DAPS_ADDR} - if [ $? -ne 0 ]; then - echo "DAPS not ready" - exit 1 - fi - - # TODO: credentials from chart - DAPS_ACCESSTOKEN=$(curl \ - --location "${DAPS_ADDR}/token?scope=omejdn%3Aadmin" \ - --header 'Content-Type: application/x-www-form-urlencoded' \ - --data-urlencode 'grant_type=client_credentials' \ - --data-urlencode "client_id=${DAPS_AUTH_CLIENT_ID}" \ - --data-urlencode "client_secret=${DAPS_AUTH_CLIENT_SECRET}" \ - --data-urlencode '=' | \ - jq -r '.access_token') - - # TODO: check if accestoken is empty or cmd failed - - # TODO: client_id must match with edc - curl \ - --location "${DAPS_ADDR}/api/v1/config/clients" \ - --header 'Content-Type: application/json' \ - --header "Authorization: Bearer ${DAPS_ACCESSTOKEN}" \ - --data "{ - \"attributes\": [ - { - \"key\": \"referringConnector\", - \"value\": \"http://localhost/BPN${DAPS_EDC_CLIENT_ID}\" - }, - { - \"key\": \"idsc\", - \"value\": \"IDS_CONNECTOR_ATTRIBUTES_ALL\" - } - ], - \"client_id\": \"${DAPS_EDC_CLIENT_ID}\", - \"name\": \"${DAPS_EDC_CLIENT_ID}\", - \"client_secret\": \"${DAPS_EDC_CLIENT_ID}-secret\", - \"token_endpoint_auth_method\": \"private_key_jwt\", - \"redirect_uris\": [ - \"/\" - ], - \"scope\": [ - \"idsc:IDS_CONNECTOR_ATTRIBUTES_ALL\" - ], - \"grant_types\": [ - \"client_credentials\" - ] - }" - - DAPS_PUBLICKEY_VALUE_ESCAPED=$(echo "${DAPS_PUBLICKEY_VALUE}" | sed ':a;N;$!ba;s/\n/\\n/g') - - curl \ - --location "${DAPS_ADDR}/api/v1/config/clients/${DAPS_EDC_CLIENT_ID}/keys" \ - --header "Authorization: Bearer ${DAPS_ACCESSTOKEN}" \ - --header 'Content-Type: application/json' \ - --data "{ - \"certificate\" : \"${DAPS_PUBLICKEY_VALUE_ESCAPED}\" - }" diff --git a/charts/umbrella/charts/certs/templates/configmap-vaultscript.yaml b/charts/umbrella/charts/certs/templates/configmap-vaultscript.yaml deleted file mode 100644 index 771d818d..00000000 --- a/charts/umbrella/charts/certs/templates/configmap-vaultscript.yaml +++ /dev/null @@ -1,76 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -kind: ConfigMap -apiVersion: v1 -metadata: - name: {{ include "app.fullname" . }}-cert-transfer-vault-script -data: - entrypoint.sh: | - #!/bin/sh - set -e - - echo "Transfering certificates to vault (${VAULT_ADDR})..." - sleep 5 - - - echo "Check vault..." - # loop trouble with BusyBox - # for i in {1..5}; do - for i in 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24; do - if vault status ; then - echo "Vault ready..." - break - fi - echo "Vault not yet ready..." - sleep 5 - done - - vault status - if [ $? -ne 0 ]; then - echo "Vault not ready" - exit 1 - fi - - echo "Vault is ready" - - # TODO: check if key already exists - - echo "Transfering DAPS private certificate to vault..." - cat << EOF | vault kv put secret/${VAULT_DAPS_PRIVATEKEY_KEY} content=- - ${VAULT_DAPS_PRIVATEKEY_VALUE} - EOF - - echo "Transfering DAPS public certificate to vault..." - cat << EOF | vault kv put secret/${VAULT_DAPS_PUBLICKEY_KEY} content=- - ${VAULT_DAPS_PUBLICKEY_VALUE} - EOF - - echo "Transfering TRANSFER certificate chain to vault..."echo "Transfering DAPS private certificate to vault..." - cat << EOF | vault kv put secret/${VAULT_TRANSFER_PRIVATEKEY_KEY} content=- - ${VAULT_TRANSFER_PRIVATEKEY_VALUE} - EOF - - echo "Transfering TRANSFER public certificate to vault..." - cat << EOF | vault kv put secret/${VAULT_TRANSFER_PUBLICKEY_KEY} content=- - ${VAULT_TRANSFER_PUBLICKEY_VALUE} - EOF - - echo "Transfering encryptionAesKey to vault..." - vault kv put secret/${VAULT_TRANSFER_ENCRYPTION_AES_KEY} content=${VAULT_TRANSFER_ENCRYPTION_AES_VALUE} diff --git a/charts/umbrella/charts/certs/templates/job-daps.yaml b/charts/umbrella/charts/certs/templates/job-daps.yaml deleted file mode 100644 index 2c50d0d2..00000000 --- a/charts/umbrella/charts/certs/templates/job-daps.yaml +++ /dev/null @@ -1,79 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -apiVersion: batch/v1 -kind: Job -metadata: - name: {{ include "app.fullname" . }}-cert-transfer-daps - labels: - {{- include "app.labels" . | nindent 4 }} - app.kubernetes.io/component: cert-transfer-daps -spec: - template: - metadata: - labels: - {{- include "app.labels" . | nindent 8 }} - app.kubernetes.io/component: cert-transfer-daps - spec: - securityContext: - runAsNonRoot: true - runAsGroup: 101 - runAsUser: 100 - fsGroup: 101 - containers: - - name: transfer - image: ghcr.io/taskmedia/curl-jq:main - command: - - /home/curl_user/entrypoint.sh - # command: - # - sleep - # - "3600" - env: - - name: DAPS_ADDR - value: {{ tpl .Values.daps.url . }} - - - name: DAPS_AUTH_CLIENT_ID - value: {{ .Values.daps.auth.clientId | required ".Values.daps.auth.clientId is required" }} - - - name: DAPS_AUTH_CLIENT_SECRET - value: {{ .Values.daps.auth.clientSecret | required ".Values.daps.auth.clientSecret is required" }} - - - name: DAPS_EDC_CLIENT_ID - value: {{ .Values.daps.edc.clientId | required ".Values.daps.edc.clientId is required" }} - - - name: DAPS_PUBLICKEY_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-daps - key: tls.crt - - volumeMounts: - - name: script - mountPath: /home/curl_user/entrypoint.sh - subPath: entrypoint.sh - volumes: - - name: script - configMap: - name: {{ include "app.fullname" . }}-cert-transfer-daps-script - defaultMode: 0777 - restartPolicy: Never - backoffLimit: 5 - # activeDeadlineSeconds: 15 - # ttlSecondsAfterFinished: 3600 - parallelism: 1 diff --git a/charts/umbrella/charts/certs/templates/job-vault.yaml b/charts/umbrella/charts/certs/templates/job-vault.yaml deleted file mode 100644 index 0f631cc6..00000000 --- a/charts/umbrella/charts/certs/templates/job-vault.yaml +++ /dev/null @@ -1,103 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -apiVersion: batch/v1 -kind: Job -metadata: - name: {{ include "app.fullname" . }}-cert-transfer-vault - labels: - {{- include "app.labels" . | nindent 4 }} - app.kubernetes.io/component: cert-transfer-vault -spec: - template: - metadata: - labels: - {{- include "app.labels" . | nindent 8 }} - app.kubernetes.io/component: cert-transfer-vault - spec: - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 100 - fsGroup: 1000 - containers: - - name: transfer - image: hashicorp/vault:1.12.1 - command: - - /home/vault/entrypoint.sh - # command: - # - sleep - # - "3600" - env: - - name: VAULT_ADDR - value: {{ tpl .Values.vault.url . }} - - name: VAULT_TOKEN - value: {{ .Values.vault.token }} - - - name: VAULT_DAPS_PRIVATEKEY_KEY - value: {{ .Values.vault.daps.privateKey }} - - name: VAULT_DAPS_PRIVATEKEY_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-daps - key: tls.key - - name: VAULT_DAPS_PUBLICKEY_KEY - value: {{ .Values.vault.daps.publicKey }} - - name: VAULT_DAPS_PUBLICKEY_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-daps - key: tls.crt - - - name: VAULT_TRANSFER_PRIVATEKEY_KEY - value: {{ .Values.vault.transfer.privateKey }} - - name: VAULT_TRANSFER_PRIVATEKEY_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-transfer - key: tls.key - - name: VAULT_TRANSFER_PUBLICKEY_KEY - value: {{ .Values.vault.transfer.publicKey }} - - name: VAULT_TRANSFER_PUBLICKEY_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-transfer - key: tls.crt - - - name: VAULT_TRANSFER_ENCRYPTION_AES_KEY - value: {{ .Values.vault.transfer.encryptionAesKey }} - - name: VAULT_TRANSFER_ENCRYPTION_AES_VALUE - valueFrom: - secretKeyRef: - name: {{ include "app.fullname" . }}-encryptionkey - key: encryptionkey - volumeMounts: - - name: script - mountPath: /home/vault/entrypoint.sh - subPath: entrypoint.sh - volumes: - - name: script - configMap: - name: {{ include "app.fullname" . }}-cert-transfer-vault-script - defaultMode: 0777 - restartPolicy: Never - backoffLimit: 5 - # activeDeadlineSeconds: 15 - # ttlSecondsAfterFinished: 3600 - parallelism: 1 diff --git a/charts/umbrella/charts/certs/templates/secret-daps.yaml b/charts/umbrella/charts/certs/templates/secret-daps.yaml deleted file mode 100644 index 5749d77d..00000000 --- a/charts/umbrella/charts/certs/templates/secret-daps.yaml +++ /dev/null @@ -1,28 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -{{- $cert := genSelfSignedCert "catena-x.net" nil nil 365 }} -apiVersion: v1 -kind: Secret -metadata: - name: {{ include "app.fullname" . }}-daps -type: kubernetes.io/tls -data: - tls.crt: {{ $cert.Cert | b64enc | quote }} - tls.key: {{ $cert.Key | b64enc | quote }} diff --git a/charts/umbrella/charts/certs/templates/secret-encryptionkey.yaml b/charts/umbrella/charts/certs/templates/secret-encryptionkey.yaml deleted file mode 100644 index 93921fa7..00000000 --- a/charts/umbrella/charts/certs/templates/secret-encryptionkey.yaml +++ /dev/null @@ -1,26 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -apiVersion: v1 -kind: Secret -metadata: - name: {{ include "app.fullname" . }}-encryptionkey -type: Opaque -data: - encryptionkey: {{ randAlphaNum 32 | b64enc | quote }} diff --git a/charts/umbrella/charts/certs/templates/secret-transfercert.yaml b/charts/umbrella/charts/certs/templates/secret-transfercert.yaml deleted file mode 100644 index f49b6a47..00000000 --- a/charts/umbrella/charts/certs/templates/secret-transfercert.yaml +++ /dev/null @@ -1,28 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -{{- $cert := genSelfSignedCert "catena-x.net" nil nil 365 }} -apiVersion: v1 -kind: Secret -metadata: - name: {{ include "app.fullname" . }}-transfer -type: kubernetes.io/tls -data: - tls.crt: {{ $cert.Cert | b64enc | quote }} - tls.key: {{ $cert.Key | b64enc | quote }} diff --git a/charts/umbrella/charts/certs/values.yaml b/charts/umbrella/charts/certs/values.yaml deleted file mode 100644 index a4b19f3e..00000000 --- a/charts/umbrella/charts/certs/values.yaml +++ /dev/null @@ -1,42 +0,0 @@ -# ############################################################################# -# Copyright (c) 2023 Contributors to the Eclipse Foundation -# -# See the NOTICE file(s) distributed with this work for additional -# information regarding copyright ownership. -# -# This program and the accompanying materials are made available under the -# terms of the Apache License, Version 2.0 which is available at -# https://www.apache.org/licenses/LICENSE-2.0. -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT -# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the -# License for the specific language governing permissions and limitations -# under the License. -# -# SPDX-License-Identifier: Apache-2.0 -# ############################################################################# ---- -daps: - url: http://{{ .Release.Name }}-daps:4567 - - auth: - clientId: "" - clientSecret: "" - - edc: - clientId: "" - -vault: - url: http://{{ .Release.Name }}-vault:8200 - - daps: - privateKey: daps-private-key - publicKey: daps-public-key - - token: vaultRootToken - - transfer: - encryptionAesKey: transfer-proxy-token-encryption-aes-key - privateKey: transfer-proxy-token-signer-private-key - publicKey: transfer-proxy-token-signer-public-key