9419f7d4a3
security: switch ESO→Vault auth from token to k8s SA
...
Remove static Vault token from Git (was exposed in vault-token-secret.yaml).
ESO now authenticates via Kubernetes service account JWT → short-lived tokens.
Add sync-hook Job to configure Vault k8s auth idempotently on ArgoCD sync.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com >
2026-04-22 13:08:21 +07:00
9acc10d103
chore: remove sample-nodejs-app source code and CI/CD configuration
2026-04-17 15:24:05 +07:00
26ac517674
add test-cicd code
2026-04-17 09:15:51 +07:00
11bb25d772
chore: increase storage allocations for Harbor components and enable Trivy scanner
2026-04-14 14:29:04 +07:00
15cff5b327
chore: reduce Harbor storage size and configure Longhorn HTTPRoute via Gateway API
2026-04-14 11:37:27 +07:00
7b5f57d24e
chore: disable Trivy scanner in Harbor configuration
2026-04-13 19:21:56 +07:00
1cfda7da6b
fix: update nginx TLS condition, set default commonName, and increase registry storage size
2026-04-13 19:12:49 +07:00
12ef1b9cb5
feat: initialize Harbor Helm chart with full component templates and configuration values
2026-04-13 18:19:27 +07:00
4d17b17d1c
fix: update external-secrets API version and escape template syntax in grafana-admin-secret manifest
2026-04-13 11:42:37 +07:00
995d526bd1
feat: configure Grafana admin credentials via ExternalSecret in kube-prometheus-stack values
2026-04-13 00:04:50 +07:00
75420b461e
feat: add full kube-prometheus-stack helm chart manifests and templates
2026-04-12 23:55:42 +07:00
5b57892a19
fix: enable secret creation for Jenkins admin user in values.yaml
2026-04-12 23:43:12 +07:00
741e3fb63b
chore: update jenkins values to use existing-secret for admin credentials
2026-04-12 23:26:38 +07:00
eb00e23e48
chore: update ExternalSecret apiVersion to v1
2026-04-12 22:52:58 +07:00
6e27e6ec5f
rename folder
2026-04-12 22:41:31 +07:00
