Marketplace
BrowsePublish
Marketplace
upbound/configuration-vault@v0.1.0
xsecrets.sec.upbound.io

xsecrets.sec.upbound.io

xsecrets.sec.upbound.io
upbound/configuration-vault@v0.1.0xsecrets.sec.upbound.io
Type

Composition

Referenced XRD

XSecret

Source Codegithub.com/upbound/configuration-vault
YAML
kind: Composition
apiVersion: apiextensions.crossplane.io/v1
metadata:
  name: xsecrets.sec.upbound.io
  creationTimestamp: null
spec:
  compositeTypeRef:
    apiVersion: sec.upbound.io/v1alpha1
    kind: XSecret
  mode: Pipeline
  pipeline:
    - step: patch-and-transform
      functionRef:
        name: upbound-function-patch-and-transform
      input:
        apiVersion: pt.fn.crossplane.io/v1beta1
        kind: Resources
        resources:
          - base:
              apiVersion: vault.vault.upbound.io/v1alpha1
              kind: Mount
              spec:
                deletionPolicy: Delete
                forProvider:
                  description: Crossplane created secret mount.
                  externalEntropyAccess: false
                  path: kv-v2
                  type: kv-v2
            name: kv-v2-secret-mount
            patches:
              - fromFieldPath: spec.parameters.id
                toFieldPath: metadata.name
                transforms:
                  - string:
                      fmt: "%s-kv-v2-secret-mount"
                      type: Format
                    type: string
                type: FromCompositeFieldPath
              - fromFieldPath: spec.parameters.providerConfigName
                toFieldPath: spec.providerConfigRef.name
                type: FromCompositeFieldPath
              - fromFieldPath: status.atProvider
                policy:
                  fromFieldPath: Required
                toFieldPath: status.kvV2SecretMount
                type: ToCompositeFieldPath
          - base:
              apiVersion: vault.vault.upbound.io/v1alpha1
              kind: Mount
              spec:
                deletionPolicy: Delete
                forProvider:
                  description: Crossplane created secret mount.
                  externalEntropyAccess: false
                  path: transit
                  type: transit
            name: transit-secret-mount
            patches:
              - fromFieldPath: spec.parameters.id
                toFieldPath: metadata.name
                transforms:
                  - string:
                      fmt: "%s-transit-secret-mount"
                      type: Format
                    type: string
                type: FromCompositeFieldPath
              - fromFieldPath: spec.parameters.providerConfigName
                toFieldPath: spec.providerConfigRef.name
                type: FromCompositeFieldPath
              - fromFieldPath: status.atProvider
                policy:
                  fromFieldPath: Required
                toFieldPath: status.transitSecretMount
                type: ToCompositeFieldPath
          - base:
              apiVersion: transit.vault.upbound.io/v1alpha1
              kind: SecretBackendKey
              spec:
                deletionPolicy: Delete
                forProvider:
                  allowPlaintextBackup: false
                  backend: transit
                  convergentEncryption: false
                  deletionAllowed: true
                  derived: false
                  exportable: false
                  minDecryptionVersion: 1
                  minEncryptionVersion: 0
                  type: aes256-gcm96
            name: transit-secret-backend-key
            patches:
              - fromFieldPath: spec.parameters.id
                toFieldPath: metadata.name
                transforms:
                  - string:
                      fmt: "%s-transit-secret-backend-key"
                      type: Format
                    type: string
                type: FromCompositeFieldPath
              - fromFieldPath: spec.parameters.transitKeyName
                toFieldPath: spec.forProvider.name
                type: FromCompositeFieldPath
              - fromFieldPath: spec.parameters.providerConfigName
                toFieldPath: spec.providerConfigRef.name
                type: FromCompositeFieldPath
              - fromFieldPath: status.atProvider
                policy:
                  fromFieldPath: Required
                toFieldPath: status.transitSecretBackendKey
                type: ToCompositeFieldPath
Marketplace

Discover the building blocks for your internal cloud platform.

© 2022 Upbound, Inc.

SolutionsProvidersConfigurations
LearnDocumentationTry for Free
CompanyAboutContact Us
MorePrivacy PolicyTerms & Conditions
Marketplace

© 2022 Upbound, Inc.

Marketplace

Discover the building blocksfor your internal cloud platform.