├── .circleci └── config.yml ├── .gitignore ├── Dockerfile ├── LICENSE ├── Makefile ├── PROJECT ├── README.md ├── api └── v1beta1 │ ├── groupversion_info.go │ ├── utils.go │ ├── vaultsecret_types.go │ └── zz_generated.deepcopy.go ├── config ├── certmanager │ ├── certificate.yaml │ ├── kustomization.yaml │ └── kustomizeconfig.yaml ├── crd │ ├── bases │ │ └── maupu.org_vaultsecrets.yaml │ ├── kustomization.yaml │ ├── kustomizeconfig.yaml │ └── patches │ │ ├── cainjection_in_vaultsecrets.yaml │ │ └── webhook_in_vaultsecrets.yaml ├── default │ ├── kustomization.yaml │ ├── manager_auth_proxy_patch.yaml │ ├── manager_webhook_patch.yaml │ └── webhookcainjection_patch.yaml ├── doc-samples │ ├── maupu.org_v1beta1_vaultsecrets_cr.yaml │ ├── operator.yaml │ ├── role.yaml │ ├── role_binding.yaml │ └── service_account.yaml ├── manager │ ├── kustomization.yaml │ └── manager.yaml ├── prometheus │ ├── kustomization.yaml │ └── monitor.yaml ├── rbac │ ├── auth_proxy_client_clusterrole.yaml │ ├── auth_proxy_role.yaml │ ├── auth_proxy_role_binding.yaml │ ├── auth_proxy_service.yaml │ ├── kustomization.yaml │ ├── leader_election_role.yaml │ ├── leader_election_role_binding.yaml │ ├── role.yaml │ ├── role_binding.yaml │ ├── vaultsecret_editor_role.yaml │ └── vaultsecret_viewer_role.yaml ├── samples │ ├── kustomization.yaml │ └── maupu.org_v1beta1_vaultsecret.yaml └── webhook │ ├── kustomization.yaml │ ├── kustomizeconfig.yaml │ └── service.yaml ├── controllers ├── suite_test.go ├── vaultsecret_controller.go └── vaultsecret_manager.go ├── go.mod ├── go.sum ├── hack ├── boilerplate.go.txt └── kind │ ├── README.md │ ├── kind.sh │ ├── test_workload │ ├── kustomization.yaml │ ├── namespace.yaml │ └── secret.yaml │ ├── vault │ ├── apps_v1_deployment_vault.yaml │ ├── kustomization.yaml │ ├── rbac.authorization.k8s.io_v1beta1_clusterrolebinding_role-tokenreview-binding.yaml │ ├── v1_namespace_vault.yaml │ ├── v1_service_vault.yaml │ ├── v1_serviceaccount_vault.yaml │ └── vault-init-job.bash │ └── vault_secret │ ├── kustomization.yaml │ └── namespace.yaml ├── main.go ├── pkg ├── k8sutils │ └── resources.go └── vault │ ├── approle.go │ ├── auth_provider.go │ ├── client_cached.go │ ├── client_reader.go │ ├── client_simple.go │ ├── errors.go │ ├── helpers.go │ ├── kubernetes.go │ └── token.go └── version └── version.go /.circleci/config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/.circleci/config.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/.gitignore -------------------------------------------------------------------------------- /Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/Dockerfile -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/Makefile -------------------------------------------------------------------------------- /PROJECT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/PROJECT -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/README.md -------------------------------------------------------------------------------- /api/v1beta1/groupversion_info.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/api/v1beta1/groupversion_info.go -------------------------------------------------------------------------------- /api/v1beta1/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/api/v1beta1/utils.go -------------------------------------------------------------------------------- /api/v1beta1/vaultsecret_types.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/api/v1beta1/vaultsecret_types.go -------------------------------------------------------------------------------- /api/v1beta1/zz_generated.deepcopy.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/api/v1beta1/zz_generated.deepcopy.go -------------------------------------------------------------------------------- /config/certmanager/certificate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/certmanager/certificate.yaml -------------------------------------------------------------------------------- /config/certmanager/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/certmanager/kustomization.yaml -------------------------------------------------------------------------------- /config/certmanager/kustomizeconfig.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/certmanager/kustomizeconfig.yaml -------------------------------------------------------------------------------- /config/crd/bases/maupu.org_vaultsecrets.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/crd/bases/maupu.org_vaultsecrets.yaml -------------------------------------------------------------------------------- /config/crd/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/crd/kustomization.yaml -------------------------------------------------------------------------------- /config/crd/kustomizeconfig.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/crd/kustomizeconfig.yaml -------------------------------------------------------------------------------- /config/crd/patches/cainjection_in_vaultsecrets.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/crd/patches/cainjection_in_vaultsecrets.yaml -------------------------------------------------------------------------------- /config/crd/patches/webhook_in_vaultsecrets.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/crd/patches/webhook_in_vaultsecrets.yaml -------------------------------------------------------------------------------- /config/default/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/default/kustomization.yaml -------------------------------------------------------------------------------- /config/default/manager_auth_proxy_patch.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/default/manager_auth_proxy_patch.yaml -------------------------------------------------------------------------------- /config/default/manager_webhook_patch.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/default/manager_webhook_patch.yaml -------------------------------------------------------------------------------- /config/default/webhookcainjection_patch.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/default/webhookcainjection_patch.yaml -------------------------------------------------------------------------------- /config/doc-samples/maupu.org_v1beta1_vaultsecrets_cr.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/doc-samples/maupu.org_v1beta1_vaultsecrets_cr.yaml -------------------------------------------------------------------------------- /config/doc-samples/operator.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/doc-samples/operator.yaml -------------------------------------------------------------------------------- /config/doc-samples/role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/doc-samples/role.yaml -------------------------------------------------------------------------------- /config/doc-samples/role_binding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/doc-samples/role_binding.yaml -------------------------------------------------------------------------------- /config/doc-samples/service_account.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: ServiceAccount 3 | metadata: 4 | name: vault-secret 5 | -------------------------------------------------------------------------------- /config/manager/kustomization.yaml: -------------------------------------------------------------------------------- 1 | resources: 2 | - manager.yaml 3 | -------------------------------------------------------------------------------- /config/manager/manager.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/manager/manager.yaml -------------------------------------------------------------------------------- /config/prometheus/kustomization.yaml: -------------------------------------------------------------------------------- 1 | resources: 2 | - monitor.yaml 3 | -------------------------------------------------------------------------------- /config/prometheus/monitor.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/prometheus/monitor.yaml -------------------------------------------------------------------------------- /config/rbac/auth_proxy_client_clusterrole.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/auth_proxy_client_clusterrole.yaml -------------------------------------------------------------------------------- /config/rbac/auth_proxy_role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/auth_proxy_role.yaml -------------------------------------------------------------------------------- /config/rbac/auth_proxy_role_binding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/auth_proxy_role_binding.yaml -------------------------------------------------------------------------------- /config/rbac/auth_proxy_service.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/auth_proxy_service.yaml -------------------------------------------------------------------------------- /config/rbac/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/kustomization.yaml -------------------------------------------------------------------------------- /config/rbac/leader_election_role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/leader_election_role.yaml -------------------------------------------------------------------------------- /config/rbac/leader_election_role_binding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/leader_election_role_binding.yaml -------------------------------------------------------------------------------- /config/rbac/role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/role.yaml -------------------------------------------------------------------------------- /config/rbac/role_binding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/role_binding.yaml -------------------------------------------------------------------------------- /config/rbac/vaultsecret_editor_role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/vaultsecret_editor_role.yaml -------------------------------------------------------------------------------- /config/rbac/vaultsecret_viewer_role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/rbac/vaultsecret_viewer_role.yaml -------------------------------------------------------------------------------- /config/samples/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/samples/kustomization.yaml -------------------------------------------------------------------------------- /config/samples/maupu.org_v1beta1_vaultsecret.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/samples/maupu.org_v1beta1_vaultsecret.yaml -------------------------------------------------------------------------------- /config/webhook/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/webhook/kustomization.yaml -------------------------------------------------------------------------------- /config/webhook/kustomizeconfig.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/webhook/kustomizeconfig.yaml -------------------------------------------------------------------------------- /config/webhook/service.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/config/webhook/service.yaml -------------------------------------------------------------------------------- /controllers/suite_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/controllers/suite_test.go -------------------------------------------------------------------------------- /controllers/vaultsecret_controller.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/controllers/vaultsecret_controller.go -------------------------------------------------------------------------------- /controllers/vaultsecret_manager.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/controllers/vaultsecret_manager.go -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/go.sum -------------------------------------------------------------------------------- /hack/boilerplate.go.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/boilerplate.go.txt -------------------------------------------------------------------------------- /hack/kind/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/README.md -------------------------------------------------------------------------------- /hack/kind/kind.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/kind.sh -------------------------------------------------------------------------------- /hack/kind/test_workload/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/test_workload/kustomization.yaml -------------------------------------------------------------------------------- /hack/kind/test_workload/namespace.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/test_workload/namespace.yaml -------------------------------------------------------------------------------- /hack/kind/test_workload/secret.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/test_workload/secret.yaml -------------------------------------------------------------------------------- /hack/kind/vault/apps_v1_deployment_vault.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/apps_v1_deployment_vault.yaml -------------------------------------------------------------------------------- /hack/kind/vault/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/kustomization.yaml -------------------------------------------------------------------------------- /hack/kind/vault/rbac.authorization.k8s.io_v1beta1_clusterrolebinding_role-tokenreview-binding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/rbac.authorization.k8s.io_v1beta1_clusterrolebinding_role-tokenreview-binding.yaml -------------------------------------------------------------------------------- /hack/kind/vault/v1_namespace_vault.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Namespace 3 | metadata: 4 | name: vault 5 | -------------------------------------------------------------------------------- /hack/kind/vault/v1_service_vault.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/v1_service_vault.yaml -------------------------------------------------------------------------------- /hack/kind/vault/v1_serviceaccount_vault.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/v1_serviceaccount_vault.yaml -------------------------------------------------------------------------------- /hack/kind/vault/vault-init-job.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault/vault-init-job.bash -------------------------------------------------------------------------------- /hack/kind/vault_secret/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault_secret/kustomization.yaml -------------------------------------------------------------------------------- /hack/kind/vault_secret/namespace.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/hack/kind/vault_secret/namespace.yaml -------------------------------------------------------------------------------- /main.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/main.go -------------------------------------------------------------------------------- /pkg/k8sutils/resources.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/k8sutils/resources.go -------------------------------------------------------------------------------- /pkg/vault/approle.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/approle.go -------------------------------------------------------------------------------- /pkg/vault/auth_provider.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/auth_provider.go -------------------------------------------------------------------------------- /pkg/vault/client_cached.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/client_cached.go -------------------------------------------------------------------------------- /pkg/vault/client_reader.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/client_reader.go -------------------------------------------------------------------------------- /pkg/vault/client_simple.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/client_simple.go -------------------------------------------------------------------------------- /pkg/vault/errors.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/errors.go -------------------------------------------------------------------------------- /pkg/vault/helpers.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/helpers.go -------------------------------------------------------------------------------- /pkg/vault/kubernetes.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/kubernetes.go -------------------------------------------------------------------------------- /pkg/vault/token.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/pkg/vault/token.go -------------------------------------------------------------------------------- /version/version.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nmaupu/vault-secret/HEAD/version/version.go --------------------------------------------------------------------------------