diff --git a/Makefile b/Makefile index cce3920..50d1559 100644 --- a/Makefile +++ b/Makefile @@ -3,7 +3,7 @@ # To re-generate a bundle for another specific version without changing the standard setup, you can: # - use the VERSION as arg of the bundle target (e.g make bundle VERSION=0.0.2) # - use environment variables to overwrite this value (e.g export VERSION=0.0.2) -VERSION ?= 0.10.3 +VERSION ?= 0.10.4 # CHANNELS define the bundle channels used in the bundle. # Add a new line here if you would like to change its default config. (E.g CHANNELS = "candidate,fast,stable") diff --git a/bundle/manifests/external-secrets-operator.clusterserviceversion.yaml b/bundle/manifests/external-secrets-operator.clusterserviceversion.yaml index b0982e2..f2d6f18 100644 --- a/bundle/manifests/external-secrets-operator.clusterserviceversion.yaml +++ b/bundle/manifests/external-secrets-operator.clusterserviceversion.yaml @@ -671,8 +671,8 @@ metadata: capabilities: Deep Insights categories: Security certified: "false" - containerImage: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.3 - createdAt: "2024-09-09T19:28:48Z" + containerImage: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.4 + createdAt: "2024-09-25T12:13:54Z" description: Operator to configure external-secrets helm-chart based operator operatorframework.io/cluster-monitoring: "true" operators.openshift.io/infrastructure-features: '["Disconnected"]' @@ -684,7 +684,7 @@ metadata: operatorframework.io/arch.amd64: supported operatorframework.io/arch.ppc64le: supported operatorframework.io/os.linux: supported - name: external-secrets-operator.v0.10.3 + name: external-secrets-operator.v0.10.4 namespace: external-secrets spec: apiservicedefinitions: {} @@ -979,7 +979,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.annotations['olm.targetNamespaces'] - image: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.3 + image: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.4 livenessProbe: httpGet: path: /healthz @@ -1077,4 +1077,4 @@ spec: provider: name: External Secrets url: https://external-secrets.io - version: 0.10.3 + version: 0.10.4 diff --git a/bundle/manifests/external-secrets.io_clusterexternalsecrets.yaml b/bundle/manifests/external-secrets.io_clusterexternalsecrets.yaml index 38175e3..0bfabc9 100644 --- a/bundle/manifests/external-secrets.io_clusterexternalsecrets.yaml +++ b/bundle/manifests/external-secrets.io_clusterexternalsecrets.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ClusterExternalSecret listKind: ClusterExternalSecretList plural: clusterexternalsecrets diff --git a/bundle/manifests/external-secrets.io_clustersecretstores.yaml b/bundle/manifests/external-secrets.io_clustersecretstores.yaml index f77a55f..c42d673 100644 --- a/bundle/manifests/external-secrets.io_clustersecretstores.yaml +++ b/bundle/manifests/external-secrets.io_clustersecretstores.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ClusterSecretStore listKind: ClusterSecretStoreList plural: clustersecretstores @@ -3799,6 +3799,44 @@ spec: - database - host type: object + previder: + description: Previder configures this store to sync secrets using + the Previder provider + properties: + auth: + description: PreviderAuth contains a secretRef for credentials. + properties: + secretRef: + description: PreviderAuthSecretRef holds secret references + for Previder Vault credentials. + properties: + accessToken: + description: The AccessToken is used for authentication + properties: + key: + description: |- + The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be + defaulted, in others it may be required. + type: string + name: + description: The name of the Secret resource being + referred to. + type: string + namespace: + description: |- + Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults + to the namespace of the referent. + type: string + type: object + required: + - accessToken + type: object + type: object + baseUri: + type: string + required: + - auth + type: object pulumi: description: Pulumi configures this store to sync secrets using the Pulumi provider @@ -3828,7 +3866,7 @@ spec: type: object type: object apiUrl: - default: https://api.pulumi.com/api/preview + default: https://api.pulumi.com/api/esc description: APIURL is the URL of the Pulumi API. type: string environment: @@ -3843,10 +3881,15 @@ spec: Organization are a space to collaborate on shared projects and stacks. To create a new organization, visit https://app.pulumi.com/ and click "New Organization". type: string + project: + description: Project is the name of the Pulumi ESC project + the environment belongs to. + type: string required: - accessToken - environment - organization + - project type: object scaleway: description: Scaleway diff --git a/bundle/manifests/external-secrets.io_externalsecrets.yaml b/bundle/manifests/external-secrets.io_externalsecrets.yaml index 0a24a9d..859881a 100644 --- a/bundle/manifests/external-secrets.io_externalsecrets.yaml +++ b/bundle/manifests/external-secrets.io_externalsecrets.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ExternalSecret listKind: ExternalSecretList plural: externalsecrets diff --git a/bundle/manifests/external-secrets.io_pushsecrets.yaml b/bundle/manifests/external-secrets.io_pushsecrets.yaml index f36fc48..6e59f59 100644 --- a/bundle/manifests/external-secrets.io_pushsecrets.yaml +++ b/bundle/manifests/external-secrets.io_pushsecrets.yaml @@ -2,8 +2,10 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null + labels: + external-secrets.io/component: controller name: pushsecrets.external-secrets.io spec: conversion: @@ -19,7 +21,7 @@ spec: group: external-secrets.io names: categories: - - pushsecrets + - external-secrets kind: PushSecret listKind: PushSecretList plural: pushsecrets diff --git a/bundle/manifests/external-secrets.io_secretstores.yaml b/bundle/manifests/external-secrets.io_secretstores.yaml index cfc4fd1..46f76b7 100644 --- a/bundle/manifests/external-secrets.io_secretstores.yaml +++ b/bundle/manifests/external-secrets.io_secretstores.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: SecretStore listKind: SecretStoreList plural: secretstores @@ -3799,6 +3799,44 @@ spec: - database - host type: object + previder: + description: Previder configures this store to sync secrets using + the Previder provider + properties: + auth: + description: PreviderAuth contains a secretRef for credentials. + properties: + secretRef: + description: PreviderAuthSecretRef holds secret references + for Previder Vault credentials. + properties: + accessToken: + description: The AccessToken is used for authentication + properties: + key: + description: |- + The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be + defaulted, in others it may be required. + type: string + name: + description: The name of the Secret resource being + referred to. + type: string + namespace: + description: |- + Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults + to the namespace of the referent. + type: string + type: object + required: + - accessToken + type: object + type: object + baseUri: + type: string + required: + - auth + type: object pulumi: description: Pulumi configures this store to sync secrets using the Pulumi provider @@ -3828,7 +3866,7 @@ spec: type: object type: object apiUrl: - default: https://api.pulumi.com/api/preview + default: https://api.pulumi.com/api/esc description: APIURL is the URL of the Pulumi API. type: string environment: @@ -3843,10 +3881,15 @@ spec: Organization are a space to collaborate on shared projects and stacks. To create a new organization, visit https://app.pulumi.com/ and click "New Organization". type: string + project: + description: Project is the name of the Pulumi ESC project + the environment belongs to. + type: string required: - accessToken - environment - organization + - project type: object scaleway: description: Scaleway diff --git a/bundle/manifests/generators.external-secrets.io_acraccesstokens.yaml b/bundle/manifests/generators.external-secrets.io_acraccesstokens.yaml index 2926058..96f35ba 100644 --- a/bundle/manifests/generators.external-secrets.io_acraccesstokens.yaml +++ b/bundle/manifests/generators.external-secrets.io_acraccesstokens.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - acraccesstoken + - external-secrets + - external-secrets-generators kind: ACRAccessToken listKind: ACRAccessTokenList plural: acraccesstokens diff --git a/bundle/manifests/generators.external-secrets.io_ecrauthorizationtokens.yaml b/bundle/manifests/generators.external-secrets.io_ecrauthorizationtokens.yaml index 6584138..de98f1f 100644 --- a/bundle/manifests/generators.external-secrets.io_ecrauthorizationtokens.yaml +++ b/bundle/manifests/generators.external-secrets.io_ecrauthorizationtokens.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - ecrauthorizationtoken + - external-secrets + - external-secrets-generators kind: ECRAuthorizationToken listKind: ECRAuthorizationTokenList plural: ecrauthorizationtokens diff --git a/bundle/manifests/generators.external-secrets.io_fakes.yaml b/bundle/manifests/generators.external-secrets.io_fakes.yaml index 1a044ad..1acd925 100644 --- a/bundle/manifests/generators.external-secrets.io_fakes.yaml +++ b/bundle/manifests/generators.external-secrets.io_fakes.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - fake + - external-secrets + - external-secrets-generators kind: Fake listKind: FakeList plural: fakes diff --git a/bundle/manifests/generators.external-secrets.io_gcraccesstokens.yaml b/bundle/manifests/generators.external-secrets.io_gcraccesstokens.yaml index baacd77..d915f23 100644 --- a/bundle/manifests/generators.external-secrets.io_gcraccesstokens.yaml +++ b/bundle/manifests/generators.external-secrets.io_gcraccesstokens.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - gcraccesstoken + - external-secrets + - external-secrets-generators kind: GCRAccessToken listKind: GCRAccessTokenList plural: gcraccesstokens diff --git a/bundle/manifests/generators.external-secrets.io_githubaccesstokens.yaml b/bundle/manifests/generators.external-secrets.io_githubaccesstokens.yaml index 57a5af3..5090832 100644 --- a/bundle/manifests/generators.external-secrets.io_githubaccesstokens.yaml +++ b/bundle/manifests/generators.external-secrets.io_githubaccesstokens.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - githubaccesstoken + - external-secrets + - external-secrets-generators kind: GithubAccessToken listKind: GithubAccessTokenList plural: githubaccesstokens diff --git a/bundle/manifests/generators.external-secrets.io_passwords.yaml b/bundle/manifests/generators.external-secrets.io_passwords.yaml index 5b705f8..88d0de2 100644 --- a/bundle/manifests/generators.external-secrets.io_passwords.yaml +++ b/bundle/manifests/generators.external-secrets.io_passwords.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - password + - external-secrets + - external-secrets-generators kind: Password listKind: PasswordList plural: passwords diff --git a/bundle/manifests/generators.external-secrets.io_uuids.yaml b/bundle/manifests/generators.external-secrets.io_uuids.yaml index 9309d5f..25252a3 100644 --- a/bundle/manifests/generators.external-secrets.io_uuids.yaml +++ b/bundle/manifests/generators.external-secrets.io_uuids.yaml @@ -2,8 +2,10 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null + labels: + external-secrets.io/component: controller name: uuids.generators.external-secrets.io spec: conversion: @@ -19,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - password + - external-secrets + - external-secrets-generators kind: UUID listKind: UUIDList plural: uuids @@ -31,10 +34,7 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: |- - Password generates a random password based on the - configuration parameters in spec. - You can specify the length, characterset and other attributes. + description: UUID generates a version 1 UUID (e56657e3-764f-11ef-a397-65231a88c216). properties: apiVersion: description: |- diff --git a/bundle/manifests/generators.external-secrets.io_vaultdynamicsecrets.yaml b/bundle/manifests/generators.external-secrets.io_vaultdynamicsecrets.yaml index 46f05d6..8bff0a9 100644 --- a/bundle/manifests/generators.external-secrets.io_vaultdynamicsecrets.yaml +++ b/bundle/manifests/generators.external-secrets.io_vaultdynamicsecrets.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - vaultdynamicsecret + - external-secrets + - external-secrets-generators kind: VaultDynamicSecret listKind: VaultDynamicSecretList plural: vaultdynamicsecrets diff --git a/bundle/manifests/generators.external-secrets.io_webhooks.yaml b/bundle/manifests/generators.external-secrets.io_webhooks.yaml index 08f9226..66f1b5d 100644 --- a/bundle/manifests/generators.external-secrets.io_webhooks.yaml +++ b/bundle/manifests/generators.external-secrets.io_webhooks.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 creationTimestamp: null labels: external-secrets.io/component: controller @@ -21,7 +21,8 @@ spec: group: generators.external-secrets.io names: categories: - - webhook + - external-secrets + - external-secrets-generators kind: Webhook listKind: WebhookList plural: webhooks diff --git a/bundle/metadata/annotations.yaml b/bundle/metadata/annotations.yaml index e846447..f77459a 100644 --- a/bundle/metadata/annotations.yaml +++ b/bundle/metadata/annotations.yaml @@ -9,6 +9,7 @@ annotations: operators.operatorframework.io.metrics.builder: operator-sdk-v1.32.0 operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 operators.operatorframework.io.metrics.project_layout: helm.sdk.operatorframework.io/v1 + com.redhat.openshift.versions: v4.11 # Annotations for testing. operators.operatorframework.io.test.mediatype.v1: scorecard+v1 diff --git a/config/manager/kustomization.yaml b/config/manager/kustomization.yaml index c8329d2..b5c2f91 100644 --- a/config/manager/kustomization.yaml +++ b/config/manager/kustomization.yaml @@ -13,4 +13,4 @@ kind: Kustomization images: - name: controller newName: ghcr.io/external-secrets/external-secrets-helm-operator - newTag: v0.10.3 + newTag: v0.10.4 diff --git a/config/manifests/bases/external-secrets-operator.clusterserviceversion.yaml b/config/manifests/bases/external-secrets-operator.clusterserviceversion.yaml index a9e54f6..c21054c 100644 --- a/config/manifests/bases/external-secrets-operator.clusterserviceversion.yaml +++ b/config/manifests/bases/external-secrets-operator.clusterserviceversion.yaml @@ -6,7 +6,7 @@ metadata: capabilities: Deep Insights categories: Security certified: "false" - containerImage: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.3 + containerImage: ghcr.io/external-secrets/external-secrets-helm-operator:v0.10.4 createdAt: "2021-11-22 00:00:00" description: Operator to configure external-secrets helm-chart based operator operatorframework.io/cluster-monitoring: "true" diff --git a/config/manifests/crds/acraccesstoken.yml b/config/manifests/crds/acraccesstoken.yml index 21f5075..1019320 100644 --- a/config/manifests/crds/acraccesstoken.yml +++ b/config/manifests/crds/acraccesstoken.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: acraccesstokens.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - acraccesstoken + - external-secrets + - external-secrets-generators kind: ACRAccessToken listKind: ACRAccessTokenList plural: acraccesstokens diff --git a/config/manifests/crds/clusterexternalsecret.yml b/config/manifests/crds/clusterexternalsecret.yml index 19faa6a..2552566 100644 --- a/config/manifests/crds/clusterexternalsecret.yml +++ b/config/manifests/crds/clusterexternalsecret.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: clusterexternalsecrets.external-secrets.io @@ -10,7 +10,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ClusterExternalSecret listKind: ClusterExternalSecretList plural: clusterexternalsecrets diff --git a/config/manifests/crds/clustersecretstore.yml b/config/manifests/crds/clustersecretstore.yml index 0f52e67..0f7b421 100644 --- a/config/manifests/crds/clustersecretstore.yml +++ b/config/manifests/crds/clustersecretstore.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: clustersecretstores.external-secrets.io @@ -10,7 +10,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ClusterSecretStore listKind: ClusterSecretStoreList plural: clustersecretstores @@ -3506,6 +3506,41 @@ spec: - database - host type: object + previder: + description: Previder configures this store to sync secrets using the Previder provider + properties: + auth: + description: PreviderAuth contains a secretRef for credentials. + properties: + secretRef: + description: PreviderAuthSecretRef holds secret references for Previder Vault credentials. + properties: + accessToken: + description: The AccessToken is used for authentication + properties: + key: + description: |- + The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be + defaulted, in others it may be required. + type: string + name: + description: The name of the Secret resource being referred to. + type: string + namespace: + description: |- + Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults + to the namespace of the referent. + type: string + type: object + required: + - accessToken + type: object + type: object + baseUri: + type: string + required: + - auth + type: object pulumi: description: Pulumi configures this store to sync secrets using the Pulumi provider properties: @@ -3531,7 +3566,7 @@ spec: type: object type: object apiUrl: - default: https://api.pulumi.com/api/preview + default: https://api.pulumi.com/api/esc description: APIURL is the URL of the Pulumi API. type: string environment: @@ -3546,10 +3581,14 @@ spec: Organization are a space to collaborate on shared projects and stacks. To create a new organization, visit https://app.pulumi.com/ and click "New Organization". type: string + project: + description: Project is the name of the Pulumi ESC project the environment belongs to. + type: string required: - accessToken - environment - organization + - project type: object scaleway: description: Scaleway diff --git a/config/manifests/crds/ecrauthorizationtoken.yml b/config/manifests/crds/ecrauthorizationtoken.yml index 4f42a45..121d936 100644 --- a/config/manifests/crds/ecrauthorizationtoken.yml +++ b/config/manifests/crds/ecrauthorizationtoken.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: ecrauthorizationtokens.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - ecrauthorizationtoken + - external-secrets + - external-secrets-generators kind: ECRAuthorizationToken listKind: ECRAuthorizationTokenList plural: ecrauthorizationtokens diff --git a/config/manifests/crds/externalsecret.yml b/config/manifests/crds/externalsecret.yml index 918ceea..35d366b 100644 --- a/config/manifests/crds/externalsecret.yml +++ b/config/manifests/crds/externalsecret.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: externalsecrets.external-secrets.io @@ -10,7 +10,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: ExternalSecret listKind: ExternalSecretList plural: externalsecrets diff --git a/config/manifests/crds/fake.yml b/config/manifests/crds/fake.yml index 7703d26..27f4dcd 100644 --- a/config/manifests/crds/fake.yml +++ b/config/manifests/crds/fake.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: fakes.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - fake + - external-secrets + - external-secrets-generators kind: Fake listKind: FakeList plural: fakes diff --git a/config/manifests/crds/gcraccesstoken.yml b/config/manifests/crds/gcraccesstoken.yml index 49769d8..ee01ffb 100644 --- a/config/manifests/crds/gcraccesstoken.yml +++ b/config/manifests/crds/gcraccesstoken.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: gcraccesstokens.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - gcraccesstoken + - external-secrets + - external-secrets-generators kind: GCRAccessToken listKind: GCRAccessTokenList plural: gcraccesstokens diff --git a/config/manifests/crds/githubaccesstoken.yml b/config/manifests/crds/githubaccesstoken.yml index 91331f2..9d11388 100644 --- a/config/manifests/crds/githubaccesstoken.yml +++ b/config/manifests/crds/githubaccesstoken.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: githubaccesstokens.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - githubaccesstoken + - external-secrets + - external-secrets-generators kind: GithubAccessToken listKind: GithubAccessTokenList plural: githubaccesstokens diff --git a/config/manifests/crds/password.yml b/config/manifests/crds/password.yml index 493cbc0..1eed80b 100644 --- a/config/manifests/crds/password.yml +++ b/config/manifests/crds/password.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: passwords.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - password + - external-secrets + - external-secrets-generators kind: Password listKind: PasswordList plural: passwords diff --git a/config/manifests/crds/pushsecret.yml b/config/manifests/crds/pushsecret.yml index a536e6f..8a06176 100644 --- a/config/manifests/crds/pushsecret.yml +++ b/config/manifests/crds/pushsecret.yml @@ -2,13 +2,15 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 + labels: + external-secrets.io/component: controller name: pushsecrets.external-secrets.io spec: group: external-secrets.io names: categories: - - pushsecrets + - external-secrets kind: PushSecret listKind: PushSecretList plural: pushsecrets diff --git a/config/manifests/crds/secretstore.yml b/config/manifests/crds/secretstore.yml index 70edd98..84d059c 100644 --- a/config/manifests/crds/secretstore.yml +++ b/config/manifests/crds/secretstore.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: secretstores.external-secrets.io @@ -10,7 +10,7 @@ spec: group: external-secrets.io names: categories: - - externalsecrets + - external-secrets kind: SecretStore listKind: SecretStoreList plural: secretstores @@ -3506,6 +3506,41 @@ spec: - database - host type: object + previder: + description: Previder configures this store to sync secrets using the Previder provider + properties: + auth: + description: PreviderAuth contains a secretRef for credentials. + properties: + secretRef: + description: PreviderAuthSecretRef holds secret references for Previder Vault credentials. + properties: + accessToken: + description: The AccessToken is used for authentication + properties: + key: + description: |- + The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be + defaulted, in others it may be required. + type: string + name: + description: The name of the Secret resource being referred to. + type: string + namespace: + description: |- + Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults + to the namespace of the referent. + type: string + type: object + required: + - accessToken + type: object + type: object + baseUri: + type: string + required: + - auth + type: object pulumi: description: Pulumi configures this store to sync secrets using the Pulumi provider properties: @@ -3531,7 +3566,7 @@ spec: type: object type: object apiUrl: - default: https://api.pulumi.com/api/preview + default: https://api.pulumi.com/api/esc description: APIURL is the URL of the Pulumi API. type: string environment: @@ -3546,10 +3581,14 @@ spec: Organization are a space to collaborate on shared projects and stacks. To create a new organization, visit https://app.pulumi.com/ and click "New Organization". type: string + project: + description: Project is the name of the Pulumi ESC project the environment belongs to. + type: string required: - accessToken - environment - organization + - project type: object scaleway: description: Scaleway diff --git a/config/manifests/crds/uuid.yml b/config/manifests/crds/uuid.yml index 2eee0b4..6902b01 100644 --- a/config/manifests/crds/uuid.yml +++ b/config/manifests/crds/uuid.yml @@ -2,13 +2,16 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 + labels: + external-secrets.io/component: controller name: uuids.generators.external-secrets.io spec: group: generators.external-secrets.io names: categories: - - password + - external-secrets + - external-secrets-generators kind: UUID listKind: UUIDList plural: uuids @@ -20,10 +23,7 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: |- - Password generates a random password based on the - configuration parameters in spec. - You can specify the length, characterset and other attributes. + description: UUID generates a version 1 UUID (e56657e3-764f-11ef-a397-65231a88c216). properties: apiVersion: description: |- diff --git a/config/manifests/crds/vaultdynamicsecret.yml b/config/manifests/crds/vaultdynamicsecret.yml index c425e50..9f5e5d0 100644 --- a/config/manifests/crds/vaultdynamicsecret.yml +++ b/config/manifests/crds/vaultdynamicsecret.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: vaultdynamicsecrets.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - vaultdynamicsecret + - external-secrets + - external-secrets-generators kind: VaultDynamicSecret listKind: VaultDynamicSecretList plural: vaultdynamicsecrets diff --git a/config/manifests/crds/webhook.yml b/config/manifests/crds/webhook.yml index 696affc..ea7c350 100644 --- a/config/manifests/crds/webhook.yml +++ b/config/manifests/crds/webhook.yml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.16.2 + controller-gen.kubebuilder.io/version: v0.16.3 labels: external-secrets.io/component: controller name: webhooks.generators.external-secrets.io @@ -10,7 +10,8 @@ spec: group: generators.external-secrets.io names: categories: - - webhook + - external-secrets + - external-secrets-generators kind: Webhook listKind: WebhookList plural: webhooks diff --git a/hack/bundle-operatorhub.sh b/hack/bundle-operatorhub.sh index 6930ad9..cdb21fe 100755 --- a/hack/bundle-operatorhub.sh +++ b/hack/bundle-operatorhub.sh @@ -50,7 +50,7 @@ function sync_repo() { git push origin main git checkout -b ${BRANCH_NAME} - cp -Tr ${BUNDLE_DIR} \ + cp -r ${BUNDLE_DIR} \ ./operators/external-secrets-operator/${VERSION} if [[ -z $(git status --porcelain=v1 2>/dev/null) ]]; then