From afc4d7b8b5c3c28454c6903d04d76d9aba571ec0 Mon Sep 17 00:00:00 2001
From: Robert Choi <taeilchoi1@gmail.com>
Date: Fri, 1 Oct 2021 18:09:42 +0900
Subject: [PATCH] create sealed-secrets project

---
 templates/argo-additional-rbac.yaml         | 11 ++++++++++-
 templates/argo-cd/prepare-argocd-wftpl.yaml |  5 +++++
 2 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/templates/argo-additional-rbac.yaml b/templates/argo-additional-rbac.yaml
index 0b290f9..4ab1151 100644
--- a/templates/argo-additional-rbac.yaml
+++ b/templates/argo-additional-rbac.yaml
@@ -54,4 +54,13 @@ rules:
   - delete
   - list
   - patch
-
+- apiGroups:
+  - bitnami.com
+  resources:
+  - sealedsecrets
+  verbs:
+  - create
+  - get
+  - delete
+  - list
+  - patch
diff --git a/templates/argo-cd/prepare-argocd-wftpl.yaml b/templates/argo-cd/prepare-argocd-wftpl.yaml
index 68926f0..c742dde 100644
--- a/templates/argo-cd/prepare-argocd-wftpl.yaml
+++ b/templates/argo-cd/prepare-argocd-wftpl.yaml
@@ -69,6 +69,11 @@ spec:
           if [[ $? != 0 ]]; then
             ./argocd proj create openstack --dest "*,*" --src "*" --allow-cluster-resource "*/*"
           fi
+
+          ./argocd proj get sealed-secrets
+          if [[ $? != 0 ]]; then
+            ./argocd proj create sealed-secrets --dest "*,*" --src "*" --allow-cluster-resource "*/*"
+          fi
       env:
         - name: ARGO_SERVER
           value: '{{workflow.parameters.argo_server}}'