vault-dynamic-configuration-operator
Vault dynamic configuration operator
Values
Key | Type | Default | Description |
---|---|---|---|
defaultConfiguration | object | {"dbDefaultTTL":"1h","dbMaxTTL":"24h","dbUserCreationStatement":"CREATE USER ''@'%' IDENTIFIED BY ''; GRANT ALL ON *.* TO ''@'%';","policyTemplate":"path \"secret/\" {\n capabilities = [\"read\"]\n}\n"} |
The values to be used for the default vault-dynamic-configuration ConfigMap . |
defaultConfiguration.policyTemplate | string | "path \"secret/\" {\n capabilities = [\"read\"]\n}\n" |
Corresponds to the policy-template field of the default ConfigMap . |
flags.annotationPrefix | string | "vault.patoarvizu.dev" |
The value to be set on the --annotation-prefix flag. |
flags.autoConfigureAnnotation | string | "auto-configure" |
|
flags.autoConfigureDBCredsAnnotation | string | "db-dynamic-creds" |
The value to be set on the --auto-configuredb-creds-annotation flag. |
flags.boundRolesToAllNamespaces | bool | false |
If set to true the --bound-roles-to-all-namespaces flag will be set. |
flags.targetVaultName | string | "vault" |
The value to be set on the --target-vault-name flag. |
flags.tokenTTL | string | "5m" |
The value to be set on the --token-ttl flag. |
imagePullPolicy | string | "IfNotPresent" |
The imagePullPolicy to be used on the operator. |
imageVersion | string | "latest" |
The image version used for the operator. |
prometheusMonitoring.enable | bool | true |
Create the Service and ServiceMonitor objects to enable Prometheus monitoring on the operator. |
prometheusMonitoring.serviceMonitor.customLabels | string | nil |
Custom labels to add to the ServiceMonitor object. |
resources | object | nil |
The resources requests/limits to be set on the deployment pod spec template. |
serviceAccount.name | string | "vault-dynamic-configuration-operator" |
The name of the ServiceAccount to be created. |
watchNamespace | string | "" |
The value to be set on the WATCH_NAMESPACE environment variable. |