Bridgeman-Accessible/custom-hashicorp-vault-helm
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Helm chart to easily deploy the Bridgeman Accessible (custom) implementation of the Hashicorp Vault image.
21 commits 1 branch 0 tags 80 KiB
Find a file
Exact
Forgejo Actions 9e288e7404 [Forgejo Actions] Update Helm chart version to 1.0.6
2025-12-24 15:54:35 +00:00
.forgejo/workflows Uncommented the helm package and helm push commands given automation seems to be working as expected now 2025-12-19 12:54:16 -06:00
templates Added support for create. eplicaCount + `create.policyCapabilities 2025-12-24 09:54:15 -06:00
.gitignore Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00
.helmignore Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
Chart.yaml [Forgejo Actions] Update Helm chart version to 1.0.6 2025-12-24 15:54:35 +00:00
LICENSE Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
README.md Added support for create. eplicaCount + `create.policyCapabilities 2025-12-24 09:54:15 -06:00
values.yaml Added support for create. eplicaCount + `create.policyCapabilities 2025-12-24 09:54:15 -06:00

README.md

Customized Hashicorp Vault Implementation - Helm Chart

This repository is meant to hold the Helm chart to be able to deploy the customized Hashicorp Vault implementation to a Kubernetes cluster using the [Helm}(https://helm.sh) software.

Including as a dependency

To use this chart as a dependency:

dependencies:
  - name: ba-custom-hashicorp-vault
    version: 1.0.6
    repository: "https://helm.bridgemanaccessible.ca/"
    alias: passVault
    condition: passVault.enabled

Values (values.yaml)

The following table summarizes the values that can be specified in the values.yaml

Value Name Possible Values Required
type hashicorp Yes
vaultName string No
vaultPort number (ex. 8200) No
create.enabled true / false Yes
create.image.repository string (ex. <redacted-private-repo>/ba-custom-hashicorp-vault) Yes*
create.image.tag latest Yes*
create.ingress.enabled true / false Yes*
create.ingress.host string (ex. vault.<redacted-private-hostname>) Yes**
create.snapshotServer.enabled true / false Yes*
create.snapshotServer.externalPort number (ex. 81) Yes***
create.snapshotServer.internalPort number (ex. 8300) Yes***
create.snapshotServer.vaultCredsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes***
create.snapshotServer.vaultCredsPVC.size size string (ex. 512Mi) Yes***
create.appRole.roleIDSecretName string (ex. VAULT_ROLE_ID) Yes*
create.appRole.secretIDSecretName string (ex. VAULT_SECRET_ID) Yes*
create.roleVarsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes*
create.roleVarsPVC.size size string (ex. 512Mi) Yes*
create.vaultData.storageClassName string(ex. rook-ceph-block) Yes*
create.vaultData.accessModes array<ReadWriteOnce> Yes*
create.vaultData.size size string (ex. 2Gi) Yes*

* If create.enabled is true ** If create.ingress.enabled is true *** If creat.snapshotServer.enabled is true