From 693893bcb2a0c0bb8140cc885a80da9db4c69398 Mon Sep 17 00:00:00 2001
From: Khue Doan <mail@khuedoan.com>
Date: Sat, 26 Feb 2022 10:37:25 +0700
Subject: [PATCH] feat(external-secrets): add test secret store

---
 .../templates/clustersecretstore.yaml         | 25 +++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 platform/external-secrets/templates/clustersecretstore.yaml

diff --git a/platform/external-secrets/templates/clustersecretstore.yaml b/platform/external-secrets/templates/clustersecretstore.yaml
new file mode 100644
index 00000000..178101da
--- /dev/null
+++ b/platform/external-secrets/templates/clustersecretstore.yaml
@@ -0,0 +1,25 @@
+apiVersion: external-secrets.io/v1alpha1
+kind: ClusterSecretStore
+metadata:
+  name: vault
+spec:
+  provider:
+    vault:
+      server: http://vault.vault:8200
+      path: secret
+      auth:
+        tokenSecretRef:
+          name: vault-token
+          namespace: vault
+          key: token
+        # TODO switch to kubernetes auth
+        # kubernetes:
+        #   mountPath: "kubernetes"
+        #   role: "demo"
+        #   serviceAccountRef:
+        #     name: "my-sa"
+        #     namespace: "secret-admin"
+        #   secretRef:
+        #     name: "my-secret"
+        #     namespace: "secret-admin"
+        #     key: "vault"