rancher-partner-charts/charts/bitnami/airflow/templates/config/secret.yaml

{{- /*
Copyright VMware, Inc.
SPDX-License-Identifier: APACHE-2.0
*/}}

{{- if (not .Values.auth.existingSecret) -}}
apiVersion: v1
kind: Secret
metadata:
  name: {{ include "common.names.fullname" . }}
  namespace: {{ .Release.Namespace | quote }}
  labels: {{- include "common.labels.standard" . | nindent 4 }}
    {{- if .Values.commonLabels }}
    {{- include "common.tplvalues.render" (dict "value" .Values.commonLabels "context" $) | nindent 4 }}
    {{- end }}
  {{- if .Values.commonAnnotations }}
  annotations: {{- include "common.tplvalues.render" (dict "value" .Values.commonAnnotations "context" $) | nindent 4 }}
  {{- end }}
type: Opaque
data:
  airflow-password: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-password" "providedValues" (list "auth.password") "context" $) }}
  # Airflow keys must be base64-encoded, hence we need to pipe to 'b64enc' twice
  # The auto-generation mechanism available at "common.secrets.passwords.manage" isn't compatible with encoding twice
  # Therefore, we can only use this function if the secret already exists
  {{- if or (include "common.secrets.exists" (dict "secret" (include "common.names.fullname" .) "context" $)) (not (empty .Values.auth.fernetKey)) }}
  airflow-fernet-key: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-fernet-key" "providedValues" (list "auth.fernetKey") "context" $) }}
  {{- else }}
  airflow-fernet-key: {{ randAlphaNum 32 | b64enc | b64enc | quote }}
  {{- end }}
  {{- if or (include "common.secrets.exists" (dict "secret" (include "common.names.fullname" .) "context" $)) (not (empty .Values.auth.secretKey)) }}
  airflow-secret-key: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-secret-key" "providedValues" (list "auth.secretKey") "context" $) }}
  {{- else }}
  airflow-secret-key: {{ randAlphaNum 32 | b64enc | b64enc | quote }}
  {{- end }}
{{- end }}
Charts CI ``` Updated: argo/argo-cd: - 5.37.0 bitnami/airflow: - 14.3.0 bitnami/postgresql: - 12.6.2 bitnami/redis: - 17.11.7 bitnami/wordpress: - 16.1.23 trilio/k8s-triliovault-operator: - 3.1.1 ``` 2023-07-05 19:22:09 +00:00			`{{- /*`
			`Copyright VMware, Inc.`
			`SPDX-License-Identifier: APACHE-2.0`
			`*/}}`

CI Updated Charts Added: bitnami/airflow: - 13.1.7 bitnami/cassandra: - 9.7.3 bitnami/kafka: - 19.0.1 bitnami/spark: - 6.3.8 bitnami/tomcat: - 10.4.9 bitnami/zookeeper: - 10.2.4 gitlab/gitlab: - 6.5.1 bitnami/mariadb: - 11.3.3 bitnami/mysql: - 9.4.1 bitnami/postgresql: - 11.9.12 bitnami/redis: - 17.3.7 bitnami/wordpress: - 15.2.6 Updated: argo/argo-cd: - 5.8.2 2022-10-26 15:53:33 +00:00			`{{- if (not .Values.auth.existingSecret) -}}`
			`apiVersion: v1`
			`kind: Secret`
			`metadata:`
			`name: {{ include "common.names.fullname" . }}`
			`namespace: {{ .Release.Namespace \| quote }}`
			`labels: {{- include "common.labels.standard" . \| nindent 4 }}`
			`{{- if .Values.commonLabels }}`
			`{{- include "common.tplvalues.render" (dict "value" .Values.commonLabels "context" $) \| nindent 4 }}`
			`{{- end }}`
			`{{- if .Values.commonAnnotations }}`
			`annotations: {{- include "common.tplvalues.render" (dict "value" .Values.commonAnnotations "context" $) \| nindent 4 }}`
			`{{- end }}`
			`type: Opaque`
			`data:`
			`airflow-password: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-password" "providedValues" (list "auth.password") "context" $) }}`
			`# Airflow keys must be base64-encoded, hence we need to pipe to 'b64enc' twice`
			`# The auto-generation mechanism available at "common.secrets.passwords.manage" isn't compatible with encoding twice`
			`# Therefore, we can only use this function if the secret already exists`
			`{{- if or (include "common.secrets.exists" (dict "secret" (include "common.names.fullname" .) "context" $)) (not (empty .Values.auth.fernetKey)) }}`
			`airflow-fernet-key: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-fernet-key" "providedValues" (list "auth.fernetKey") "context" $) }}`
			`{{- else }}`
			`airflow-fernet-key: {{ randAlphaNum 32 \| b64enc \| b64enc \| quote }}`
			`{{- end }}`
			`{{- if or (include "common.secrets.exists" (dict "secret" (include "common.names.fullname" .) "context" $)) (not (empty .Values.auth.secretKey)) }}`
			`airflow-secret-key: {{ include "common.secrets.passwords.manage" (dict "secret" (include "common.names.fullname" .) "key" "airflow-secret-key" "providedValues" (list "auth.secretKey") "context" $) }}`
			`{{- else }}`
			`airflow-secret-key: {{ randAlphaNum 32 \| b64enc \| b64enc \| quote }}`
			`{{- end }}`
			`{{- end }}`