lionsdev/helm-chart-lions-app
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: chart Helm parent lions-app v1.0.0 — templates hardened (secretKeyRef, readOnlyRootFS, NetworkPolicy, ExternalSecret, PDB, SM, HPA)

Browse Source
This commit is contained in:
dahoud
2026-04-22 14:22:00 +00:00
commit ab865631fe
16 changed files with 1074 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
templates/externalsecret.yaml Normal file
View File

@@ -0,0 +1,28 @@
{{- if .Values.externalSecret.enabled }}
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: {{ include "lions-app.name" . }}
namespace: {{ .Release.Namespace }}
labels:
{{- include "lions-app.labels" . | nindent 4 }}
spec:
refreshInterval: {{ .Values.externalSecret.refreshInterval | default "1h" }}
secretStoreRef:
kind: {{ .Values.externalSecret.secretStoreRef.kind }}
name: {{ .Values.externalSecret.secretStoreRef.name }}
target:
name: {{ include "lions-app.secretName" . }}
creationPolicy: {{ .Values.externalSecret.target.creationPolicy | default "Owner" }}
deletionPolicy: {{ .Values.externalSecret.target.deletionPolicy | default "Retain" }}
data:
{{- range .Values.externalSecret.data }}
- secretKey: {{ .secretKey }}
remoteRef:
key: {{ .remoteRef.key }}
property: {{ .remoteRef.property }}
{{- if .remoteRef.conversionStrategy }}
conversionStrategy: {{ .remoteRef.conversionStrategy }}
{{- end }}
{{- end }}
{{- end }}