Bridgeman-Accessible/custom-hashicorp-vault-helm
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Helm chart to easily deploy the Bridgeman Accessible (custom) implementation of the Hashicorp Vault image.
23 commits 1 branch 0 tags 92 KiB
Find a file
Forgejo Actions 18633616bd [Forgejo Actions] Update Helm chart version to 1.0.7
2026-04-05 20:46:38 +00:00
.forgejo/workflows Uncommented the helm package and helm push commands given automation seems to be working as expected now 2025-12-19 12:54:16 -06:00
templates Attempted to make the changes and add things that will be needed for the new k8s mode 2026-04-05 15:46:22 -05:00
.gitignore Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00
.helmignore Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
Chart.yaml [Forgejo Actions] Update Helm chart version to 1.0.7 2026-04-05 20:46:38 +00:00
LICENSE Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
README.md Added support for create. eplicaCount + `create.policyCapabilities 2025-12-24 09:54:15 -06:00
values.yaml Attempted to make the changes and add things that will be needed for the new k8s mode 2026-04-05 15:46:22 -05:00

README.md

Customized Hashicorp Vault Implementation - Helm Chart

This repository is meant to hold the Helm chart to be able to deploy the customized Hashicorp Vault implementation to a Kubernetes cluster using the [Helm}(https://helm.sh) software.

Including as a dependency

To use this chart as a dependency:

dependencies:
  - name: ba-custom-hashicorp-vault
    version: 1.0.6
    repository: "https://helm.bridgemanaccessible.ca/"
    alias: passVault
    condition: passVault.enabled

Values (values.yaml)

The following table summarizes the values that can be specified in the values.yaml

Value Name Possible Values Required
type hashicorp Yes
vaultName string No
vaultPort number (ex. 8200) No
create.enabled true / false Yes
create.image.repository string (ex. <redacted-private-repo>/ba-custom-hashicorp-vault) Yes*
create.image.tag latest Yes*
create.ingress.enabled true / false Yes*
create.ingress.host string (ex. vault.<redacted-private-hostname>) Yes**
create.snapshotServer.enabled true / false Yes*
create.snapshotServer.externalPort number (ex. 81) Yes***
create.snapshotServer.internalPort number (ex. 8300) Yes***
create.snapshotServer.vaultCredsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes***
create.snapshotServer.vaultCredsPVC.size size string (ex. 512Mi) Yes***
create.appRole.roleIDSecretName string (ex. VAULT_ROLE_ID) Yes*
create.appRole.secretIDSecretName string (ex. VAULT_SECRET_ID) Yes*
create.roleVarsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes*
create.roleVarsPVC.size size string (ex. 512Mi) Yes*
create.vaultData.storageClassName string(ex. rook-ceph-block) Yes*
create.vaultData.accessModes array<ReadWriteOnce> Yes*
create.vaultData.size size string (ex. 2Gi) Yes*

* If create.enabled is true ** If create.ingress.enabled is true *** If creat.snapshotServer.enabled is true