33 lines
1.4 KiB
YAML
33 lines
1.4 KiB
YAML
{{- if .Values.krb.enabled }}
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: krb5conf
|
|
labels:
|
|
app: {{ template "control-agent.fullname" . }}
|
|
chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
|
|
release: "{{ .Release.Name }}"
|
|
heritage: "{{ .Release.Service }}"
|
|
type: Opaque
|
|
data:
|
|
{{ (.Files.Glob "krb/krb5.conf").AsSecrets | indent 2 }}
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: kerbsecret
|
|
labels:
|
|
app: {{ template "control-agent.fullname" . }}
|
|
chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
|
|
release: "{{ .Release.Name }}"
|
|
heritage: "{{ .Release.Service }}"
|
|
type: Opaque
|
|
data:
|
|
encryption_types: {{required "encryption types to use when creating a keytab for service principal!" .Values.krb.encryptionTypes | b64enc }}
|
|
container_dn: {{required "distinguished name of the container under which new principals will be created is required!" .Values.krb.containerDn | b64enc }}
|
|
ldap_url: {{required "URL of the LDAP service provider is required!" .Values.krb.ldapUrl | b64enc }}
|
|
admin_principal: {{required "user account which has privileges to create, search and destroy service principals is required!" .Values.krb.adminPrincipal | b64enc }}
|
|
admin_key : {{required "secret key for the admin principal is required!" .Values.krb.adminKey | b64enc }}
|
|
realm : {{required "the realm of the organization is required!" .Values.krb.realm | b64enc }}
|
|
{{- end}}
|