Skip to content

add additional env variables to fulcio chart #790

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

add additional env variables to fulcio chart #790

wants to merge 6 commits into from

Conversation

Racer159
Copy link

Description of the change

Support GCP credentials for external cloud provider workloads and add additional env vars for specifying values like VAULT_ADDR

Existing or Associated Issue(s)

This is a repickup of #530

Additional Information

Checklist

  • Chart version bumped in Chart.yaml according to semver. Where applicable, update and bump the versions in any associated umbrella chart
  • Variables are documented in the values.yaml and added to the README.md. The helm-docs utility can be used to generate the necessary content. Use helm-docs --dry-run to preview the content.
  • JSON Schema generated.
  • List tests pass for Chart using the Chart Testing tool and the ct lint command.

@Racer159 Racer159 force-pushed the feat/fulcio-env-gcp branch from dbd368c to 674cab3 Compare July 29, 2024 22:17
@Racer159
Copy link
Author

Racer159 commented Jul 30, 2024
edited
Loading

On this though would it make sense to use a pattern more similar to Rekor for extra env vars? https://github.com/sigstore/helm-charts/blob/main/charts/rekor/templates/server/deployment.yaml#L105 - it may be nice in many cases to pull env vars from secrets rather than pass them through Helm values. (i.e. VAULT_TOKEN - this env var would likely ideally come through a secret or be an extra volume mount)

@Racer159 Racer159 force-pushed the feat/fulcio-env-gcp branch from 674cab3 to de59237 Compare August 4, 2024 20:09
Racer159 and others added 6 commits August 7, 2024 11:49
@Racer159 @saisatishkarra
feat(fulcio/add-env): Add additional env variables
6ad2165 
Support GCP credentials for external cloud provider workloads

Co-authored-by: saisatish karra <saisatish.karra@konghq.com>
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159 @saisatishkarra
fix(helm): make env variable optional
a7b1fd4 
Co-authored-by: saisatish karra <saisatish.karra@konghq.com>
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159 @saisatishkarra
modify env variable type
8b50eed 
Co-authored-by: saisatish karra <saisatish.karra@konghq.com>
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159 @saisatishkarra
improve naming scheme for extrernal credential config
1490b45 
Co-authored-by: saisatish karra <saisatish.karra@konghq.com>
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159
Resolve or feedback for env section
2e84f2e 
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159
Adjust json schema
a2f7ddf 
Signed-off-by: Wayne Starr <me@racer159.com>
@Racer159 Racer159 force-pushed the feat/fulcio-env-gcp branch from de59237 to a2f7ddf Compare August 7, 2024 17:50
@Racer159
Copy link
Author

Racer159 commented Aug 7, 2024

(would also like to make a similar change to the rekor chart - could do that in this PR or a separate one - currently there is a way to force things to work but it isn't a great solution: https://github.com/defenseunicorns/uds-package-sigstore/blob/main/bundle/uds-bundle.yaml#L52)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Racer159