Skip to content

Commit

Permalink
Merge pull request #389 from kube-tarian/fix-cosign-ext-secret
Browse files Browse the repository at this point in the history 
add vault app role token secret to cosign used namespace
  • Loading branch information
@vramk23
vramk23 authored Jan 25, 2024
2 parents 94e20de + e6237ec commit 9997ea1
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions capten/config-worker/internal/crossplane/config_cluster_secrets.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,11 @@ func (cp *CrossPlaneApp) configureExternalSecretsOnCluster(ctx context.Context,
return fmt.Errorf("failed to create cluter vault token secret, %v", err)
}

err = k8sclient.CreateOrUpdateSecret(ctx, cosignNameSpace, vaultAppRoleToken, v1.SecretTypeOpaque, cred, nil)
if err != nil {
return fmt.Errorf("failed to create cluter vault token secret, %v", err)
}

vaultAddressStr := fmt.Sprintf(vaultAddress, cp.cfg.DomainName)
vaultStoreCRData := fmt.Sprintf(vaultStore, natsNameSpace, vaultAddressStr, vaultAppRoleToken)
ns, resource, err := k8sclient.DynamicClient.CreateResource(ctx, []byte(vaultStoreCRData))
Expand Down

0 comments on commit 9997ea1

Please sign in to comment.