Code Review / icn.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | inline | side by side
Add SOPS support to cluster chart
[icn.git] / deploy / cluster / templates / flux-addon.yaml
diff --git a/deploy/cluster/templates/flux-addon.yaml b/deploy/cluster/templates/flux-addon.yaml
index 81322e2..8702920 100644 (file)
--- a/deploy/cluster/templates/flux-addon.yaml
+++ b/deploy/cluster/templates/flux-addon.yaml
@@ -4117,6 +4117,17 @@ data:
       - Ingress
     ---
   sync.yaml: |
+    {{- if .Values.flux.decryptionSecret }}
+    ---
+    apiVersion: v1
+    type: Opaque
+    kind: Secret
+    metadata:
+      name: {{ .Values.flux.repositoryName }}-{{ .Values.flux.branch }}-sops-gpg
+      namespace: flux-system
+    data:
+      sops.asc: {{ .Values.flux.decryptionSecret | b64enc }}
+    {{- end }}
     ---
     apiVersion: source.toolkit.fluxcd.io/v1beta1
     kind: GitRepository
@@ -4143,6 +4154,12 @@ data:
       sourceRef:
         kind: GitRepository
         name: {{ .Values.flux.repositoryName }}
+    {{- if .Values.flux.decryptionSecret }}
+      decryption:
+        provider: sops
+        secretRef:
+          name: {{ .Values.flux.repositoryName }}-{{ .Values.flux.branch }}-sops-gpg
+    {{- end }}
 kind: ConfigMap
 metadata:
   creationTimestamp: null