Split external secrets for yt and source in helm (#38)

tractoai · Jun 18, 2024 · 10cba00 · 10cba00
1 parent ab646ad
commit 10cba00
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 6 deletions.
diff --git a/ytsaurus-identity-sync-chart/templates/externalsecret.yaml b/ytsaurus-identity-sync-chart/templates/externalsecret.yaml
@@ -9,17 +9,17 @@ metadata:
 spec:
   data:
     - remoteRef:
-        key: {{ required "externalSecretID is not set" .Values.externalSecrets.externalSecretID }}
+        key: {{ required "externalSecretID is not set" .Values.externalSecrets.ytsaurusSecretID }}
         property: YT_TOKEN
       secretKey: YT_TOKEN
     {{- if eq $syncSource "ldap" }}
     - remoteRef:
-        key: {{ required "externalSecretID is not set" .Values.externalSecrets.externalSecretID }}
+        key: {{ required "externalSecretID is not set" .Values.externalSecrets.sourceSecretID }}
         property: LDAP_PASSWORD
       secretKey: LDAP_PASSWORD
     {{- else if eq $syncSource "azure" }}
     - remoteRef:
-        key: {{ required "externalSecretID is not set" .Values.externalSecrets.externalSecretID }}
+        key: {{ required "externalSecretID is not set" .Values.externalSecrets.sourceSecretID }}
         property: AZURE_CLIENT_SECRET
       secretKey: AZURE_CLIENT_SECRET
     {{- end }}
@@ -34,4 +34,4 @@ spec:
       engineVersion: v2
       mergePolicy: Replace
       type: Opaque
-{{- end }}
+{{- end }}
diff --git a/ytsaurus-identity-sync-chart/values.yaml b/ytsaurus-identity-sync-chart/values.yaml
@@ -71,7 +71,7 @@ yt:
   token: "yt-secret-token"
 
 # NB: 'ldap' and 'azure' are supported
-# syncSource: azure
+syncSource: azure
 
 ldap:
   password: "not-here"
@@ -85,7 +85,8 @@ externalSecrets:
   secretStore:
     kind: SecretStore
     name: ""
-  externalSecretID: ""
+  ytsaurusSecretID: ""
+  sourceSecretID: ""
 
 syncConfig: |-
   # NB: Place your complete raw identity-sync config here