Bridgeman-Accessible/custom-hashicorp-vault-helm
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Helm chart to easily deploy the Bridgeman Accessible (custom) implementation of the Hashicorp Vault image.
19 commits 1 branch 0 tags 80 KiB
Find a file
Forgejo Actions a76ce5ceee [Forgejo Actions] Update Helm chart version to 1.0.5
2025-12-23 10:00:18 +00:00
.forgejo/workflows Uncommented the helm package and helm push commands given automation seems to be working as expected now 2025-12-19 12:54:16 -06:00
templates Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00
.gitignore Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00
.helmignore Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
Chart.yaml [Forgejo Actions] Update Helm chart version to 1.0.5 2025-12-23 10:00:18 +00:00
LICENSE Added some forgotten housekeeping stuff 2025-12-19 13:03:13 -06:00
README.md Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00
values.yaml Mostly just tightening up stuff (hard focus on purpose etc...) 2025-12-23 03:59:57 -06:00

README.md

Customized Hashicorp Vault Implementation - Helm Chart

This repository is meant to hold the Helm chart to be able to deploy the customized Hashicorp Vault implementation to a Kubernetes cluster using the [Helm}(https://helm.sh) software.

Including as a dependency

To use this chart as a dependency:

dependencies:
  - name: ba-custom-hashicorp-vault
    version: 1.0.5
    repository: "https://helm.bridgemanaccessible.ca/"
    alias: passVault
    condition: passVault.enabled

Values (values.yaml)

The following table summarizes the values that can be specified in the values.yaml

Value Name Possible Values Required
type hashicorp Yes
vaultName string No
vaultPort number (ex. 8200) No
create.enabled true / false Yes
create.image.repository string (ex. <redacted-private-repo>/ba-custom-hashicorp-vault) Yes*
create.image.tag latest Yes*
create.ingress.enabled true / false Yes*
create.ingress.host string (ex. vault.<redacted-private-hostname>) Yes**
create.snapshotServer.enabled true / false Yes*
create.snapshotServer.externalPort number (ex. 81) Yes***
create.snapshotServer.internalPort number (ex. 8300) Yes***
create.snapshotServer.vaultCredsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes***
create.snapshotServer.vaultCredsPVC.size size string (ex. 512Mi) Yes***
create.appRole.roleIDSecretName string (ex. VAULT_ROLE_ID) Yes*
create.appRole.secretIDSecretName string (ex. VAULT_SECRET_ID) Yes*
create.roleVarsPVC.storageClassName string (ex. vault-role-vars-rook-cephfs) Yes*
create.roleVarsPVC.size size string (ex. 512Mi) Yes*
create.vaultData.storageClassName string(ex. rook-ceph-block) Yes*
create.vaultData.accessModes array<ReadWriteOnce> Yes*
create.vaultData.size size string (ex. 2Gi) Yes*

* If create.enabled is true ** If create.ingress.enabled is true *** If creat.snapshotServer.enabled is true