From c0ee9f75443eda507eb7951bc71e246e7adcb084 Mon Sep 17 00:00:00 2001
From: Simon Misencik <simon.misencik@gmail.com>
Date: Fri, 20 Oct 2023 08:24:27 +0200
Subject: [PATCH] Update external secret files

Signed-off-by: Simon Misencik <simon.misencik@gmail.com>
---
 charts/frinx-machine/localhost-values.yaml      | 11 +++++++++++
 ...ecrets.yaml => regcred-external-secret.yaml} |  2 +-
 charts/frinx-machine/templates/secretstore.yaml | 17 +++++++++++++++++
 3 files changed, 29 insertions(+), 1 deletion(-)
 create mode 100644 charts/frinx-machine/localhost-values.yaml
 rename charts/frinx-machine/templates/{docker-external-secrets.yaml => regcred-external-secret.yaml} (94%)
 create mode 100644 charts/frinx-machine/templates/secretstore.yaml

diff --git a/charts/frinx-machine/localhost-values.yaml b/charts/frinx-machine/localhost-values.yaml
new file mode 100644
index 00000000..4e73b5ff
--- /dev/null
+++ b/charts/frinx-machine/localhost-values.yaml
@@ -0,0 +1,11 @@
+externalsecret:
+  enabled: true
+  secretstorename: development
+  vault: helm-chart-repo
+
+krakend:
+  ingress:
+    enabled: true
+    annotations:
+      kubernetes.io/ingress.class: nginx
+    host: "fm.127.0.0.1.nip.io"
diff --git a/charts/frinx-machine/templates/docker-external-secrets.yaml b/charts/frinx-machine/templates/regcred-external-secret.yaml
similarity index 94%
rename from charts/frinx-machine/templates/docker-external-secrets.yaml
rename to charts/frinx-machine/templates/regcred-external-secret.yaml
index fb00e3a9..159cc7ea 100644
--- a/charts/frinx-machine/templates/docker-external-secrets.yaml
+++ b/charts/frinx-machine/templates/regcred-external-secret.yaml
@@ -15,6 +15,6 @@ spec:
   data:
   - secretKey: .dockerconfigjson
     remoteRef:
-      key: common/regcred
+      key: regcred
       property: .dockerconfigjson
 {{- end }}{{ end }}
diff --git a/charts/frinx-machine/templates/secretstore.yaml b/charts/frinx-machine/templates/secretstore.yaml
new file mode 100644
index 00000000..ef42e795
--- /dev/null
+++ b/charts/frinx-machine/templates/secretstore.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.externalsecret }}{{ if .Values.externalsecret.enabled }}
+apiVersion: external-secrets.io/v1beta1
+kind: SecretStore
+metadata:
+  name: {{ .Values.externalsecret.secretstorename }}
+spec:
+  provider:
+    onepassword:
+      connectHost: http://onepassword-connect:8080
+      vaults:
+        {{ .Values.externalsecret.vault }}: 1
+      auth:
+        secretRef:
+          connectTokenSecretRef:
+            name: onepassword-connect-token
+            key: token
+{{- end }}{{ end }}
\ No newline at end of file