2919bb1faf
security: switch ESO→Vault auth from token to k8s SA
...
Remove static Vault token from Git (was exposed in vault-token-secret.yaml).
ESO now authenticates via Kubernetes service account JWT → short-lived tokens.
Add sync-hook Job to configure Vault k8s auth idempotently on ArgoCD sync.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com >
2026-04-22 13:08:21 +07:00
c2d62a21cb
chore: remove sample-nodejs-app source code and CI/CD configuration
2026-04-17 15:24:05 +07:00
ac40b54884
add test-cicd code
2026-04-17 09:15:51 +07:00
9d425fd427
chore: increase storage allocations for Harbor components and enable Trivy scanner
2026-04-14 14:29:04 +07:00
a354399b09
chore: reduce Harbor storage size and configure Longhorn HTTPRoute via Gateway API
2026-04-14 11:37:27 +07:00
67001eb587
chore: disable Trivy scanner in Harbor configuration
2026-04-13 19:21:56 +07:00
25b5f0cf00
fix: update nginx TLS condition, set default commonName, and increase registry storage size
2026-04-13 19:12:49 +07:00
8f1b48e154
feat: initialize Harbor Helm chart with full component templates and configuration values
2026-04-13 18:19:27 +07:00
da324c8606
fix: update external-secrets API version and escape template syntax in grafana-admin-secret manifest
2026-04-13 11:42:37 +07:00
9dfcf15878
feat: configure Grafana admin credentials via ExternalSecret in kube-prometheus-stack values
2026-04-13 00:04:50 +07:00
453292ede7
feat: add full kube-prometheus-stack helm chart manifests and templates
2026-04-12 23:55:42 +07:00
2db9d2f3fa
fix: enable secret creation for Jenkins admin user in values.yaml
2026-04-12 23:43:12 +07:00
0e3e41e7d1
chore: update jenkins values to use existing-secret for admin credentials
2026-04-12 23:26:38 +07:00
edf84e185b
chore: update ExternalSecret apiVersion to v1
2026-04-12 22:52:58 +07:00
1e221160f7
rename folder
2026-04-12 22:41:31 +07:00
7190c2befe
feat: configure External Secrets with Vault backend and enable Jenkins secret synchronization
2026-04-12 22:37:56 +07:00
bf97781fbc
Remove namespaceOverride value from External Secrets Helm chart configuration in values.yaml.
2026-04-12 21:41:30 +07:00
26f8dd6b11
Remove ArgoCD certificate and key files; add External Secrets Helm chart with Bitwarden SDK server integration, including configuration files, templates, and monitoring dashboard.
2026-04-12 21:11:11 +07:00
9545b79b7a
Update Jenkins values.yaml to enable external secret integration and adjust existingSecret configuration for Vault compatibility.
2026-04-12 20:32:23 +07:00
e036624a64
Add external secret configuration for Jenkins admin credentials in values.yaml and create ExternalSecret template for Vault integration.
2026-04-12 18:01:32 +07:00
499c71b31c
Remove deprecated httproute.yaml and implement server-httproute.yaml template for Vault HTTPRoute configuration in Helm chart.
2026-04-12 17:38:48 +07:00
bcfb683c10
Add Vault Helm Chart with initial configuration, README, LICENSE, and changelog; updated versions for Vault and related components, using previous values.yaml
2026-04-12 17:19:05 +07:00
48f18f4c8c
Add Jenkins Helm Chart with initial configuration, README, and changelog, using previous values.yaml
2026-04-12 17:10:24 +07:00
886f56059f
Update ArgoCD admin password in values.yaml and add Jenkins configuration values.yaml
2026-04-12 16:46:15 +07:00
6181d97d65
move to manifest
2026-04-12 16:16:19 +07:00
7aa06a183c
first commit
2026-04-12 16:09:15 +07:00
