andata
/
rancher-charts
mirror of https://git.rancher.io/charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
rancher-charts/charts/neuvector/103.0.7+up2.8.3/templates/controller-secret.yaml

34 lines
1.3 KiB
YAML
Raw Blame History

{{- if .Values.controller.enabled -}}
{{- if or (eq "true" (toString .Values.autoGenerateCert)) (and .Values.controller.certificate.key .Values.controller.certificate.certificate) }}
{{- $cert := (dict) }}
{{- if and .Values.controller.certificate.key .Values.controller.certificate.certificate }}
{{- $cert = (dict "Key" .Values.controller.certificate.key "Cert" .Values.controller.certificate.certificate ) }}
{{- else }}
{{- $cn := "neuvector" }}
{{- $cert = genSelfSignedCert $cn nil (list $cn) (.Values.defaultValidityPeriod | int) -}}
{{- end }}
apiVersion: v1
kind: Secret
metadata:
name: neuvector-controller-secret
namespace: {{ .Release.Namespace }}
labels:
chart: {{ template "neuvector.chart" . }}
release: {{ .Release.Name }}
type: Opaque
data:
ssl-cert.key: {{ include "neuvector.secrets.lookup" (dict "namespace" .Release.Namespace "secret" "neuvector-controller-secret" "key" "ssl-cert.key" "defaultValue" $cert.Key) }}
ssl-cert.pem: {{ include "neuvector.secrets.lookup" (dict "namespace" .Release.Namespace "secret" "neuvector-controller-secret" "key" "ssl-cert.pem" "defaultValue" $cert.Cert) }}
{{- end}}
---
{{- if .Values.internal.certmanager.enabled }}
{{- else if .Values.internal.autoGenerateCert }}
apiVersion: v1
kind: Secret
metadata:
name: neuvector-internal-certs
type: Opaque
{{- end}}
{{- end}}
Reference in New Issue View Git Blame Copy Permalink