Michal.Wrobel/openbao-helm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Helm chart to install OpenBao and other associated components.
490 commits 11 branches 48 tags 1.4 MiB
Shell 89.9%
Smarty 8%
HCL 0.9%
Makefile 0.7%
Dockerfile 0.5%
Find a file
Christopher Swenson daa2b3b236
Set default object selector for webhooks to exclude injector itself (#736) 
Set default object selector for webhooks to exclude injector itself

If `injector.failurePolicy` is set to `Fail`, there is a race condition
where if the mutating webhook config is setup before the injector, then
the injector can fail to start because it tries to inject itself.

We can work around this by ignoring the injector pod in in the webhook
by default.

Thanks to @joeyslalom for the object selector to exclude the pod.

Fixes https://github.com/hashicorp/vault-k8s/issues/258
2022-05-24 09:48:01 -07:00
.circleci change helm trigger branch from master to main (#700) 2022-03-03 10:10:42 -08:00
.github Update k8s versions (#706) 2022-03-21 10:29:03 -07:00
templates Set default object selector for webhooks to exclude injector itself (#736) 2022-05-24 09:48:01 -07:00
test Set default object selector for webhooks to exclude injector itself (#736) 2022-05-24 09:48:01 -07:00
.gitignore feature: Support configuring various properties as YAML directly. (#565) 2021-07-07 19:07:58 -04:00
.helmignore Ignore bin dirs 2018-08-20 17:30:52 -07:00
CHANGELOG.md Set default object selector for webhooks to exclude injector itself (#736) 2022-05-24 09:48:01 -07:00
Chart.yaml Prepare v0.20.0 release (#727) 2022-05-16 17:28:31 +01:00
CONTRIBUTING.md update CONTRIBUTING.md (#677) 2022-01-12 10:12:19 -08:00
LICENSE.md Add license 2018-08-17 22:09:05 -07:00
Makefile Updating acceptance tests (#624) 2021-10-11 14:12:55 -07:00
README.md Update minimum required helm version in readme (#730) 2022-05-19 23:23:09 -07:00
values.openshift.yaml Prepare v0.20.0 release (#727) 2022-05-16 17:28:31 +01:00
values.schema.json Set default object selector for webhooks to exclude injector itself (#736) 2022-05-24 09:48:01 -07:00
values.yaml Set default object selector for webhooks to exclude injector itself (#736) 2022-05-24 09:48:01 -07:00

README.md

Vault Helm Chart

⚠️ Please note: We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault Helm, please responsibly disclose by contacting us at security@hashicorp.com.

This repository contains the official HashiCorp Helm chart for installing and configuring Vault on Kubernetes. This chart supports multiple use cases of Vault on Kubernetes depending on the values provided.

For full documentation on this Helm chart along with all the ways you can use Vault with Kubernetes, please see the Vault and Kubernetes documentation.

Prerequisites

To use the charts here, Helm must be configured for your Kubernetes cluster. Setting up Kubernetes and Helm is outside the scope of this README. Please refer to the Kubernetes and Helm documentation.

The versions required are:

  • Helm 3.6+
  • Kubernetes 1.16+ - This is the earliest version of Kubernetes tested. It is possible that this chart works with earlier versions but it is untested.

Usage

To install the latest version of this chart, add the Hashicorp helm repository and run helm install:

$ helm repo add hashicorp https://helm.releases.hashicorp.com
"hashicorp" has been added to your repositories

$ helm install vault hashicorp/vault

Please see the many options supported in the values.yaml file. These are also fully documented directly on the Vault website along with more detailed installation instructions.