34 lines
881 B
YAML
34 lines
881 B
YAML
apiVersion: airshipit.org/v1alpha1
|
|
kind: Templater
|
|
metadata:
|
|
name: secret-template
|
|
annotations:
|
|
config.kubernetes.io/function: |
|
|
container:
|
|
image: localhost/templater
|
|
envs:
|
|
- TOLERATE_DECRYPTION_FAILURES
|
|
- DEBUG_SOPS_GPG
|
|
template: |
|
|
{{- $tolerate := env "TOLERATE_DECRYPTION_FAILURES" }}
|
|
{{- $debug := env "DEBUG_SOPS_GPG" }}
|
|
apiVersion: v1
|
|
kind: ConfigMap
|
|
metadata:
|
|
name: my-config2
|
|
annotations:
|
|
config.k8s.io/function: |
|
|
container:
|
|
image: localhost/sops
|
|
envs:
|
|
- SOPS_IMPORT_PGP
|
|
data:
|
|
ignore-mac: true
|
|
cmd: decrypt
|
|
{{- if eq $tolerate "true" }}
|
|
cmd-tolerate-failures: true
|
|
{{- end }}
|
|
{{- if not (eq $debug "true") }}
|
|
override-preexec-cmd: '[ "$SOPS_IMPORT_PGP" == "" ] || (echo "$SOPS_IMPORT_PGP" | gpg --import 2>/dev/null)'
|
|
{{- end }}
|