diff --git a/templates/server-statefulset.yaml b/templates/server-statefulset.yaml index 690a1ea..9f839b0 100644 --- a/templates/server-statefulset.yaml +++ b/templates/server-statefulset.yaml @@ -59,6 +59,8 @@ spec: fieldPath: status.podIP - name: VAULT_ADDR value: "{{ include "vault.scheme" . }}://127.0.0.1:8200" + - name: VAULT_API_ADDR + value: "{{ include "vault.scheme" . }}://$(POD_IP):8200" - name: SKIP_CHOWN value: "true" {{ template "vault.envs" . }} diff --git a/test/unit/server-dev-statefulset.bats b/test/unit/server-dev-statefulset.bats index 1e3eb73..9ede17b 100755 --- a/test/unit/server-dev-statefulset.bats +++ b/test/unit/server-dev-statefulset.bats @@ -224,19 +224,19 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "FOO" ] local actual=$(echo $object | - yq -r '.[5].value' | tee /dev/stderr) + yq -r '.[6].value' | tee /dev/stderr) [ "${actual}" = "bar" ] local actual=$(echo $object | - yq -r '.[6].name' | tee /dev/stderr) + yq -r '.[7].name' | tee /dev/stderr) [ "${actual}" = "FOOBAR" ] local actual=$(echo $object | - yq -r '.[6].value' | tee /dev/stderr) + yq -r '.[7].value' | tee /dev/stderr) [ "${actual}" = "foobar" ] } @@ -257,23 +257,23 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[4].name' | tee /dev/stderr) + yq -r '.[5].name' | tee /dev/stderr) [ "${actual}" = "ENV_FOO_0" ] local actual=$(echo $object | - yq -r '.[4].valueFrom.secretKeyRef.name' | tee /dev/stderr) + yq -r '.[5].valueFrom.secretKeyRef.name' | tee /dev/stderr) [ "${actual}" = "secret_name_0" ] local actual=$(echo $object | - yq -r '.[4].valueFrom.secretKeyRef.key' | tee /dev/stderr) + yq -r '.[5].valueFrom.secretKeyRef.key' | tee /dev/stderr) [ "${actual}" = "secret_key_0" ] local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "ENV_FOO_1" ] local actual=$(echo $object | - yq -r '.[5].valueFrom.secretKeyRef.name' | tee /dev/stderr) + yq -r '.[6].valueFrom.secretKeyRef.name' | tee /dev/stderr) [ "${actual}" = "secret_name_1" ] local actual=$(echo $object | - yq -r '.[5].valueFrom.secretKeyRef.key' | tee /dev/stderr) + yq -r '.[6].valueFrom.secretKeyRef.key' | tee /dev/stderr) [ "${actual}" = "secret_key_1" ] } diff --git a/test/unit/server-ha-statefulset.bats b/test/unit/server-ha-statefulset.bats index 0235ba1..54aa185 100755 --- a/test/unit/server-ha-statefulset.bats +++ b/test/unit/server-ha-statefulset.bats @@ -320,19 +320,19 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[4].name' | tee /dev/stderr) + yq -r '.[5].name' | tee /dev/stderr) [ "${actual}" = "FOO" ] local actual=$(echo $object | - yq -r '.[4].value' | tee /dev/stderr) + yq -r '.[5].value' | tee /dev/stderr) [ "${actual}" = "bar" ] local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "FOOBAR" ] local actual=$(echo $object | - yq -r '.[5].value' | tee /dev/stderr) + yq -r '.[6].value' | tee /dev/stderr) [ "${actual}" = "foobar" ] } @@ -354,23 +354,23 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[4].name' | tee /dev/stderr) + yq -r '.[5].name' | tee /dev/stderr) [ "${actual}" = "ENV_FOO_0" ] local actual=$(echo $object | - yq -r '.[4].valueFrom.secretKeyRef.name' | tee /dev/stderr) + yq -r '.[5].valueFrom.secretKeyRef.name' | tee /dev/stderr) [ "${actual}" = "secret_name_0" ] local actual=$(echo $object | - yq -r '.[4].valueFrom.secretKeyRef.key' | tee /dev/stderr) + yq -r '.[5].valueFrom.secretKeyRef.key' | tee /dev/stderr) [ "${actual}" = "secret_key_0" ] local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "ENV_FOO_1" ] local actual=$(echo $object | - yq -r '.[5].valueFrom.secretKeyRef.name' | tee /dev/stderr) + yq -r '.[6].valueFrom.secretKeyRef.name' | tee /dev/stderr) [ "${actual}" = "secret_name_1" ] local actual=$(echo $object | - yq -r '.[5].valueFrom.secretKeyRef.key' | tee /dev/stderr) + yq -r '.[6].valueFrom.secretKeyRef.key' | tee /dev/stderr) [ "${actual}" = "secret_key_1" ] } diff --git a/test/unit/server-statefulset.bats b/test/unit/server-statefulset.bats index 3ee6105..6e34fc5 100755 --- a/test/unit/server-statefulset.bats +++ b/test/unit/server-statefulset.bats @@ -296,19 +296,19 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[4].name' | tee /dev/stderr) + yq -r '.[5].name' | tee /dev/stderr) [ "${actual}" = "FOO" ] local actual=$(echo $object | - yq -r '.[4].value' | tee /dev/stderr) + yq -r '.[5].value' | tee /dev/stderr) [ "${actual}" = "bar" ] local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "FOOBAR" ] local actual=$(echo $object | - yq -r '.[5].value' | tee /dev/stderr) + yq -r '.[6].value' | tee /dev/stderr) [ "${actual}" = "foobar" ] local object=$(helm template \ @@ -319,19 +319,19 @@ load _helpers yq -r '.spec.template.spec.containers[0].env' | tee /dev/stderr) local actual=$(echo $object | - yq -r '.[4].name' | tee /dev/stderr) + yq -r '.[5].name' | tee /dev/stderr) [ "${actual}" = "FOO" ] local actual=$(echo $object | - yq -r '.[4].value' | tee /dev/stderr) + yq -r '.[5].value' | tee /dev/stderr) [ "${actual}" = "bar" ] local actual=$(echo $object | - yq -r '.[5].name' | tee /dev/stderr) + yq -r '.[6].name' | tee /dev/stderr) [ "${actual}" = "FOOBAR" ] local actual=$(echo $object | - yq -r '.[5].value' | tee /dev/stderr) + yq -r '.[6].value' | tee /dev/stderr) [ "${actual}" = "foobar" ] } diff --git a/values.yaml b/values.yaml index e428c58..b66afe8 100644 --- a/values.yaml +++ b/values.yaml @@ -6,7 +6,7 @@ global: enabled: true # Image is the name (and tag) of the Vault Docker image. - image: "vault:1.2.1" + image: "vault:1.2.2" # TLS for end-to-end encrypted transport tlsDisable: true @@ -176,6 +176,7 @@ server: # This should be HCL. config: | ui = true + listener "tcp" { tls_disable = 1 address = "[::]:8200"