Skip to content
/ terraform-kubernetes-external-secrets Public

Simplifies the deployment and management of the Kubernetes External Secrets operator on a Kubernetes cluster.

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

project-octal/terraform-kubernetes-external-secrets

BranchesTags

Repository files navigation

terraform-kubernetes-external-secrets

Simplifies the deployment and management of the Kubernetes External Secrets operator on a Kubernetes cluster.

Requirements

Name Version
terraform >= 0.14.8, < 2.0.0
kubernetes ~> 2.6.1

Providers

Name Version
kubernetes 2.6.1

Modules

No modules.

Resources

Name Type
kubernetes_cluster_role.cluster_role resource
kubernetes_cluster_role_binding.cluster_role_binding resource
kubernetes_cluster_role_binding.cluster_role_binding_secrets_auth resource
kubernetes_config_map.deployment_env_configmap resource
kubernetes_deployment.deployment resource
kubernetes_namespace.namespace resource
kubernetes_secret.deployment_env_secrets resource
kubernetes_service.prometheus_service resource
kubernetes_service_account.service_account resource

Inputs

Name Description Type Default Required
annotations Additional namespace annotations (e.g. for linkerd.io/inject: enabled for mesh things) map(string) {} no
deployment_name An instance name used for the resources deployed by this module. string "external-secrets-vault" no
image_name The image to use when deploying Kubernetes-External-Secrets string "external-secrets/kubernetes-external-secrets" no
image_pull_policy Determines when the image should be pulled prior to starting the container. Always: Always pull the image. | IfNotPresent: Only pull the image if it does not already exist on the node. | Never: Never pull the image string "Always" no
image_repository The image repository to use when pulling images string "ghcr.io" no
image_tag The version of Kubernetes-External-Secrets to deploy string "8.5.1" no
labels A map that consists of any additional labels that should be included with resources created by this module. map(string) {} no
namespace (optional) The name given to the namespace in which Traefik will reside. string "kube-external-secrets" no
replicas The number of replicas the deployments replicaset should maintain number 2 no
resource_limits Resource limits for the deployment pods 
object({
    cpu    = string,
    memory = string
  })
 
{
  "cpu": "200m",
  "memory": "256Mi"
}
 no
resource_requests Resource requests for the deployment pods 
object({
    cpu    = string,
    memory = string
  })
 
{
  "cpu": "100m",
  "memory": "128Mi"
}
 no
vault_address The address of the Vault instance accessed by this instance string n/a yes
vault_token The token used by this instance to access Vault string n/a yes

Outputs

No outputs.

About

Simplifies the deployment and management of the Kubernetes External Secrets operator on a Kubernetes cluster.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages