Remove ArgoCD certificate and key files; add External Secrets Helm chart with Bitwarden SDK server integration, including configuration files, templates, and monitoring dashboard.

manifest/external-secrets/charts/bitwarden-sdk-server/tests/__snapshot__/deployment_test.yaml.snap

@@ -0,0 +1,61 @@
+deployment should match snapshot:
+  1: |
+    apiVersion: apps/v1
+    kind: Deployment
+    metadata:
+      labels:
+        app.kubernetes.io/instance: RELEASE-NAME
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: bitwarden-sdk-server
+        app.kubernetes.io/version: 1.16.0
+        helm.sh/chart: bitwarden-sdk-server-0.1.0
+      name: bitwarden-sdk-server
+      namespace: NAMESPACE
+    spec:
+      replicas: 1
+      selector:
+        matchLabels:
+          app.kubernetes.io/instance: RELEASE-NAME
+          app.kubernetes.io/name: bitwarden-sdk-server
+      template:
+        metadata:
+          labels:
+            app.kubernetes.io/instance: RELEASE-NAME
+            app.kubernetes.io/name: bitwarden-sdk-server
+        spec:
+          containers:
+            - image: ghcr.io/external-secrets/bitwarden-sdk-server:v0.8.0
+              imagePullPolicy: IfNotPresent
+              livenessProbe:
+                httpGet:
+                  path: /live
+                  port: http
+                  scheme: HTTPS
+              name: bitwarden-sdk-server
+              ports:
+                - containerPort: 9998
+                  name: http
+                  protocol: TCP
+              readinessProbe:
+                httpGet:
+                  path: /ready
+                  port: http
+                  scheme: HTTPS
+              resources: {}
+              securityContext: {}
+              volumeMounts:
+                - mountPath: /certs
+                  name: bitwarden-tls-certs
+          securityContext: {}
+          serviceAccountName: bitwarden-sdk-server
+          volumes:
+            - name: bitwarden-tls-certs
+              secret:
+                items:
+                  - key: tls.crt
+                    path: cert.pem
+                  - key: tls.key
+                    path: key.pem
+                  - key: ca.crt
+                    path: ca.pem
+                secretName: bitwarden-tls-certs

manifest/external-secrets/charts/bitwarden-sdk-server/tests/deployment_test.yaml

@@ -0,0 +1,29 @@
+suite: test deployment
+templates:
+  - deployment.yaml
+tests:
+  - it: deployment should match snapshot
+    set:
+      image.tag: v0.8.0
+    asserts:
+      - matchSnapshot: {}
+  - it: Should have Pod DNS Policy set to ClusterFirst
+    set:
+      podDnsPolicy: ClusterFirst
+    asserts:
+      - equal:
+          path: spec.template.spec.dnsPolicy
+          value: ClusterFirst
+  - it: Should have Pod DNS Config set with ndots option
+    set:
+      podDnsConfig:
+        options:
+          - name: ndots
+            value: "2"
+    asserts:
+      - equal:
+          path: spec.template.spec.dnsConfig.options[0].name
+          value: "ndots"
+      - equal:
+          path: spec.template.spec.dnsConfig.options[0].value
+          value: "2"