Configure Weave GitOps to use Doppler-managed admin credentials
Changes: - Enable adminUser creation but disable Helm-managed secret - Use ExternalSecret (cluster-user-auth) from Doppler instead - Doppler secrets: WEAVE_GITOPS_ADMIN_USERNAME and WEAVE_GITOPS_ADMIN_PASSWORD_BCRYPT_HASH - Added cluster-user-auth to viewSecretsResourceNames for RBAC Login credentials are now managed via Doppler and External Secrets Operator.
This commit is contained in:
@@ -27,9 +27,12 @@ spec:
|
||||
adminUser:
|
||||
create: true
|
||||
createClusterRole: true
|
||||
createSecret: false
|
||||
createSecret: false # Secret is managed by External Secret from Doppler
|
||||
username: admin
|
||||
rbac:
|
||||
create: true
|
||||
impersonationResourceNames:
|
||||
- admin
|
||||
viewSecretsResourceNames:
|
||||
- cluster-user-auth
|
||||
- oidc-auth
|
||||
|
||||
Reference in New Issue
Block a user