openbao-helm

Author	SHA1	Message	Date
David Moreno García	0f36ee3a5b	Change config specification (#213 ) * Change config specification As it is right now, the specification of the config is done through an string. When using storage backends like PostgreSQL, the password for the database has to be included in the config variable of the values file. This change allows to specify the configuration through a map, making the chart GitOps friendly. Now, sensitive values can be stored in a different values file or passed on deployment time with --set. To have a very generic specification: - I've assumed that the combination stanza (eg. storage) name (eg. file) is unique. - Quoted values for all stanza parameters. I tested a generated configuration in a vault docker image and it seems to work just fine. * Change config format to json * Add conditional formatting * Add config for raft mode	2020-04-27 10:45:56 -04:00
Jason O'Donnell	58b96dbc10	Add Raft HA support (#229 ) * Add raft support * Add acceptance test * Update templates/server-headless-service.yaml Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com> * Add notes to raft configurables Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>	2020-03-18 15:49:14 -04:00
Theron Voran	2b2b0dd2fa	Added support for external vault (#207 ) Uses Values.injector.externalVaultAddr to control the vault address env variable and server yaml rendering. If injector.externalVaultAddr is empty, both the injector and vault are deployed, with the injector using the local vault. If injector.externalVaultAddr is not empty, only the injector is deployed, and it uses the vault at the address specified in injector.externalVaultAddr.	2020-02-21 08:16:33 -08:00
Jason O'Donnell	b41d36c621	Require vault to run as non root (#80 ) * Require vault to run as non root * Fix unit tests * Make uid/gid configurable, remove home emptydir	2019-10-18 12:42:25 -04:00
Jason O'Donnell	09f56da548	Remove privileged, add mlock configurable (#50 )	2019-09-23 01:11:04 -04:00
Sophian Mehboub	bb7ce9409b	add namespace in vault manifest definition (#38 )	2019-08-28 09:58:48 -04:00
Jason O'Donnell	abb2b6e56e	Remove version label from resources (#27 )	2019-08-20 17:08:49 -04:00
Jason O'Donnell	db571d8dda	Update helm labels (#8 )	2019-08-07 14:55:32 -04:00
Jason O'Donnell	b7469914e2	Refactor chart for 1.0, add tests, update TF (#2 ) * Refactor chart for 1.0, add tests, update TF * Fix typo in helper comment * Add NOTES for post install instructions * Fix typo in NOTES * Fix replication port for enterprise * Change updateStrategy to OnDelete * Add icon * Remove cluster address from config * Update README, add contributing doc * Update README * Change HA replicas to 3	2019-07-31 14:26:12 -04:00
Clint Shryock	dc808dc106	rename extra config file generated	2018-11-30 16:02:53 -06:00
Clint Shryock	bcc8a8db5f	re-add seperate config map file for single server. Update config/values and statefulsets. Add auto-unseal config to single server	2018-11-26 11:44:05 -06:00
Clint Shryock	678c50bb72	update config - only on HA for now, may need to split things out	2018-11-19 15:09:59 -06:00
Clint Shryock	b0944d48df	consolidate config-map	2018-11-19 14:49:30 -06:00
Clint Shryock	9e8d74de04	Add stateless configuration. Assumes a consul deployed	2018-10-08 16:35:20 -05:00
Clint Shryock	a23a7982a9	add consul HA section	2018-10-05 16:33:42 -05:00
Clint Shryock	d72a939a51	really ugly hack/slash proof-of-concept, forked from consul-helm	2018-10-02 16:14:57 -05:00
Clint Shryock	a2235339eb	remove unused files, a lot of s/Consul/Vault	2018-09-28 15:56:48 -05:00
Mitchell Hashimoto	83fc9d981c	add unit tests that use `helm template`	2018-09-03 08:42:25 -07:00
Mitchell Hashimoto	3a61646b1d	Add global.enabled to disable all components by default	2018-09-02 16:19:11 -07:00
Mitchell Hashimoto	60e57f700e	setup templates for proper name prefixing	2018-08-18 14:48:22 -07:00
Mitchell Hashimoto	323feba49c	Move chart to top-level	2018-08-18 14:20:04 -07:00

21 commits