mirror of
https://github.com/ansible/awx-operator.git
synced 2026-05-07 05:42:55 +00:00
bfec61ad8d
- This prevents us from overwriting vars unintentionally at restore time - This will make it easier to add secrets to be backed up in the future - Add generated secret names to awx spec backup - Fail early if secret status doesn't exist - Skip if secret is not in spec for non-generated secrets - Secret values must be b64 decoded before secret is created - Cleanup temp files
20 lines
599 B
Django/Jinja
20 lines
599 B
Django/Jinja
{% for secret in secrets %}
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: '{{ secrets[secret]['name'] }}'
|
|
namespace: '{{ meta.namespace }}'
|
|
labels:
|
|
app.kubernetes.io/name: '{{ meta.name }}'
|
|
app.kubernetes.io/part-of: '{{ meta.name }}'
|
|
app.kubernetes.io/managed-by: '{{ deployment_type }}-operator'
|
|
app.kubernetes.io/component: '{{ deployment_type }}'
|
|
app.kubernetes.io/operator-version: '{{ lookup("env", "OPERATOR_VERSION") }}'
|
|
stringData:
|
|
{% for key, value in secrets[secret]['data'].items() %}
|
|
'{{ key }}': '{{ value | b64decode }}'
|
|
{% endfor %}
|
|
|
|
{% endfor %}
|