diff --git a/charts/retool/Chart.yaml b/charts/retool/Chart.yaml index 0890434..af8dcea 100644 --- a/charts/retool/Chart.yaml +++ b/charts/retool/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: retool description: A Helm chart for Kubernetes type: application -version: 6.4.1 +version: 6.4.2 maintainers: - name: Retool Engineering email: engineering+helm@retool.com diff --git a/charts/retool/templates/externalsecret.yaml b/charts/retool/templates/externalsecret.yaml index 3dc0949..4d30ff5 100644 --- a/charts/retool/templates/externalsecret.yaml +++ b/charts/retool/templates/externalsecret.yaml @@ -24,10 +24,10 @@ metadata: name: {{ .name }} namespace: {{ $.Release.Namespace }} spec: - refreshInterval: 1m + refreshInterval: {{ .Values.externalSecrets.externalSecretsOperator.refreshInterval }} secretStoreRef: - name: aws-secretsmanager - kind: SecretStore + name: {{ .Values.externalSecrets.externalSecretsOperator.secretStoreRef.name }} + kind: {{ .Values.externalSecrets.externalSecretsOperator.secretStoreRef.kind }} target: name: {{ .name }} creationPolicy: Owner diff --git a/charts/retool/values.yaml b/charts/retool/values.yaml index addb136..0a8aabc 100644 --- a/charts/retool/values.yaml +++ b/charts/retool/values.yaml @@ -106,9 +106,17 @@ externalSecrets: # Support for External Secrets Operator: https://github.com/external-secrets/external-secrets externalSecretsOperator: enabled: false - # External Secrets Operator Backend Types: https://github.com/external-secrets/external-secrets#supported-backends - # Default set to AWS Secrets Manager. - backendType: secretsManager + + # RefreshInterval is the amount of time before the values reading again from the SecretStore provider + # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h" (from time.ParseDuration) + # May be set to zero to fetch and create it once + refreshInterval: "1m" + + # SecretStoreRef defines the default SecretStore to use when fetching the secret data. + secretStoreRef: + name: aws-secretsmanager + kind: SecretStore # or ClusterSecretStore + # Array of name/path key/value pairs to use for the External Secrets Objects. secretRef: [] @@ -116,9 +124,13 @@ externalSecrets: # path: global-retool-config # - name: retool-db # path: global-retool-db-config + # When true, uses kubernetes-client CRDs and not external-secrets CRDs # Defaults to true useLegacyCR: true + # Legacy External Secrets Backend Types: https://github.com/external-secrets/kubernetes-external-secrets + # Default set to AWS Secrets Manager. + backendType: secretsManager files: {} diff --git a/values.yaml b/values.yaml index dfd9392..0a8aabc 100644 --- a/values.yaml +++ b/values.yaml @@ -106,9 +106,17 @@ externalSecrets: # Support for External Secrets Operator: https://github.com/external-secrets/external-secrets externalSecretsOperator: enabled: false - # External Secrets Operator Backend Types: https://github.com/external-secrets/external-secrets#supported-backends - # Default set to AWS Secrets Manager. - backendType: secretsManager + + # RefreshInterval is the amount of time before the values reading again from the SecretStore provider + # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h" (from time.ParseDuration) + # May be set to zero to fetch and create it once + refreshInterval: "1m" + + # SecretStoreRef defines the default SecretStore to use when fetching the secret data. + secretStoreRef: + name: aws-secretsmanager + kind: SecretStore # or ClusterSecretStore + # Array of name/path key/value pairs to use for the External Secrets Objects. secretRef: [] @@ -116,9 +124,13 @@ externalSecrets: # path: global-retool-config # - name: retool-db # path: global-retool-db-config + # When true, uses kubernetes-client CRDs and not external-secrets CRDs # Defaults to true useLegacyCR: true + # Legacy External Secrets Backend Types: https://github.com/external-secrets/kubernetes-external-secrets + # Default set to AWS Secrets Manager. + backendType: secretsManager files: {} @@ -491,8 +503,7 @@ multiplayer: # Set environment variables for multiplayer pods, e.g. defining which origin to use # environmentVariables: - # - name: MAIN_DOMAIN - # value: retool.foo.com + # MAIN_DOMAIN: "retool.foo.com" # Annotations for multiplayer pods annotations: {}