/
aws-resiliency-secrets.yaml
43 lines (42 loc) · 1.43 KB
/
aws-resiliency-secrets.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
# Copyright Sonatype, Inc., 2022, All Rights Reserved.
#
# Note: This YAML file is just an example and cannot be used as-is.
# You must fill it out with the appropriate information for your deployment to be able to use it.
apiVersion: secrets-store.csi.x-k8s.io/v1
kind: SecretProviderClass
metadata:
namespace: nxrm-nexus-27385
name: nxrm-nexus-27385-nxrm-secret
spec:
provider: aws
secretObjects:
- data:
- key: db-user
objectName: nxrm-db-user
- key: db-password
objectName: nxrm-db-password
- key: db-host
objectName: nxrm-db-host
secretName: nxrm-db-secret
type: Opaque
- data:
- key: nxrm-admin-user
objectName: admin-nxrm-user
secretName: nxrm-secret
type: Opaque
parameters:
objects: |
- objectName: "arn:aws:secretsmanager:<region>:<account id>:secret:nxrm-license.lic-abcdef"
objectAlias: nxrm-license.lic
- objectName: "arn:aws:secretsmanager:<region>:<account id>:secret:nxrm-rds-cred-nexus-abcdef"
jmesPath:
- path: "username"
objectAlias: "nxrm-db-user"
- path: "password"
objectAlias: "nxrm-db-password"
- path: "host"
objectAlias: "nxrm-db-host"
- objectName: "arn:aws:secretsmanager:<region>:<account id>:secret:nxrm-admin-cred-nexus-abcdef"
jmesPath:
- path: "nxrmuser"
objectAlias: "admin-nxrm-user"