Skip to content

feat: add Cloud.ru provider #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
default23 wants to merge 2 commits into
base: main
Choose a base branch
from
Draft

feat: add Cloud.ru provider #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
e2ec08c
feat: add Cloud.ru provider
default23 May 17, 2024
e333fc9
feat: add cloudru documentation
default23 Jun 26, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 44 additions & 0 deletions apis/externalsecrets/v1beta1/secretstore_cloudru_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
/*
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/

package v1beta1

import (
esmeta "github.com/external-secrets/external-secrets/apis/meta/v1"
)

// CSMAuth contains a secretRef for credentials.
type CSMAuth struct {
// +optional
SecretRef *CSMAuthSecretRef `json:"secretRef,omitempty"`
}

// CSMAuthSecretRef holds secret references for Cloud.ru credentials.
type CSMAuthSecretRef struct {
// The AccessKeyID is used for authentication
AccessKeyID esmeta.SecretKeySelector `json:"accessKeyIDSecretRef"`
// The AccessKeySecret is used for authentication
AccessKeySecret esmeta.SecretKeySelector `json:"accessKeySecretSecretRef"`
}

// CloudruSMProvider configures a store to sync secrets using the Cloud.ru Secret Manager provider.
type CloudruSMProvider struct {
// DiscoveryURL is used to connect to the Cloud.ru product APIs.
// +optional
DiscoveryURL string `json:"discoveryURL"`
Auth CSMAuth `json:"auth"`

// ProductInstanceID is the service, which the secrets are stored in.
ProductInstanceID string `json:"productInstanceID,omitempty"`
}
4 changes: 4 additions & 0 deletions apis/externalsecrets/v1beta1/secretstore_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -163,6 +163,10 @@ type SecretStoreProvider struct {

// +optional
Passbolt *PassboltProvider `json:"passbolt,omitempty"`

// CloudruSM configures this store to sync secrets using the Cloud.ru Secret Manager provider
// +optional
CloudruSM *CloudruSMProvider `json:"cloudrusm,omitempty"`
}

type CAProviderType string
Expand Down
58 changes: 58 additions & 0 deletions apis/externalsecrets/v1beta1/zz_generated.deepcopy.go
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

63 changes: 63 additions & 0 deletions config/crds/bases/external-secrets.io_clustersecretstores.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2318,6 +2318,69 @@ spec:
- serverUrl
- username
type: object
cloudrusm:
description: CloudruSM configures this store to sync secrets using
the Cloud.ru Secret Manager provider
properties:
auth:
description: CSMAuth contains a secretRef for credentials.
properties:
secretRef:
description: CSMAuthSecretRef holds secret references
for Cloud.ru credentials.
properties:
accessKeyIDSecretRef:
description: The AccessKeyID is used for authentication
properties:
key:
description: |-
The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
defaulted, in others it may be required.
type: string
name:
description: The name of the Secret resource being
referred to.
type: string
namespace:
description: |-
Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
to the namespace of the referent.
type: string
type: object
accessKeySecretSecretRef:
description: The AccessKeySecret is used for authentication
properties:
key:
description: |-
The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
defaulted, in others it may be required.
type: string
name:
description: The name of the Secret resource being
referred to.
type: string
namespace:
description: |-
Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
to the namespace of the referent.
type: string
type: object
required:
- accessKeyIDSecretRef
- accessKeySecretSecretRef
type: object
type: object
discoveryURL:
description: DiscoveryURL is used to connect to the Cloud.ru
product APIs.
type: string
productInstanceID:
description: ProductInstanceID is the service, which the secrets
are stored in.
type: string
required:
- auth
type: object
conjur:
description: Conjur configures this store to sync secrets using
conjur provider
Expand Down
63 changes: 63 additions & 0 deletions config/crds/bases/external-secrets.io_secretstores.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2318,6 +2318,69 @@ spec:
- serverUrl
- username
type: object
cloudrusm:
description: CloudruSM configures this store to sync secrets using
the Cloud.ru Secret Manager provider
properties:
auth:
description: CSMAuth contains a secretRef for credentials.
properties:
secretRef:
description: CSMAuthSecretRef holds secret references
for Cloud.ru credentials.
properties:
accessKeyIDSecretRef:
description: The AccessKeyID is used for authentication
properties:
key:
description: |-
The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
defaulted, in others it may be required.
type: string
name:
description: The name of the Secret resource being
referred to.
type: string
namespace:
description: |-
Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
to the namespace of the referent.
type: string
type: object
accessKeySecretSecretRef:
description: The AccessKeySecret is used for authentication
properties:
key:
description: |-
The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
defaulted, in others it may be required.
type: string
name:
description: The name of the Secret resource being
referred to.
type: string
namespace:
description: |-
Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
to the namespace of the referent.
type: string
type: object
required:
- accessKeyIDSecretRef
- accessKeySecretSecretRef
type: object
type: object
discoveryURL:
description: DiscoveryURL is used to connect to the Cloud.ru
product APIs.
type: string
productInstanceID:
description: ProductInstanceID is the service, which the secrets
are stored in.
type: string
required:
- auth
type: object
conjur:
description: Conjur configures this store to sync secrets using
conjur provider
Expand Down
Loading