40 lines
991 B
YAML
40 lines
991 B
YAML
|
apiVersion: external-secrets.io/v1beta1
|
||
|
|
kind: ExternalSecret
|
||
|
|
metadata:
|
||
|
|
name: "gitea-package-registry-secret"
|
||
|
|
labels:
|
||
|
|
app: "gitea"
|
||
|
|
spec:
|
||
|
|
secretStoreRef:
|
||
|
|
name: bitwarden
|
||
|
|
kind: ClusterSecretStore
|
||
|
|
refreshInterval: "5m"
|
||
|
|
target:
|
||
|
|
template:
|
||
|
|
type: kubernetes.io/dockerconfigjson
|
||
|
|
engineVersion: v2
|
||
|
|
data:
|
||
|
|
.dockerconfigjson: |
|
||
|
|
{
|
||
|
|
"auths": {
|
||
|
|
{{ .host | toJson }}: {
|
||
|
|
"username": {{ .username | toJson }},
|
||
|
|
"password": {{ .password | toJson }},
|
||
|
|
"auth": {{ printf "%v:%v" .username .password | b64enc | toJson }}
|
||
|
|
}
|
||
|
|
}
|
||
|
|
}
|
||
|
|
data:
|
||
|
|
- secretKey: username
|
||
|
|
remoteRef:
|
||
|
|
key: "gitea package registry token"
|
||
|
|
property: username
|
||
|
|
- secretKey: password
|
||
|
|
remoteRef:
|
||
|
|
key: "gitea package registry token"
|
||
|
|
property: password
|
||
|
|
- secretKey: host
|
||
|
|
remoteRef:
|
||
|
|
key: "gitea package registry token"
|
||
|
|
property: host
|