[POLICY] Use common secret template in pap Use common secret template in pap module instead of hardcoding them in config map. For now db creds are hardcoded but this will be remove in further commits. Issue-ID: OOM-2342 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: Ic4a4c175579fdc89de216fc09edd562530ad10cc

commit: 3d9dc8b0248aa6373c127823d1014b05431c6e87 [log] [tgz]
author: Krzysztof Opasiak <k.opasiak@samsung.com> Tue Mar 31 23:05:16 2020 +0200
committer: Krzysztof Opasiak <k.opasiak@samsung.com> Fri Apr 03 23:43:07 2020 +0200
tree: b5cf8b4ad4794ad6e284847cdf39067c9fe559a2
parent: 09d1b315194e98f33fc26914c44b8c2173409b8c [diff] [blame]
diff --git a/kubernetes/policy/charts/pap/values.yaml b/kubernetes/policy/charts/pap/values.yaml
index 05f43d6..7edb3ab 100644
--- a/kubernetes/policy/charts/pap/values.yaml
+++ b/kubernetes/policy/charts/pap/values.yaml

@@ -22,6 +22,18 @@
 #################################################################
 global:
   persistence: {}
+  envsubstImage: dibi/envsubst
+
+#################################################################
+# Secrets metaconfig
+#################################################################
+secrets:
+  - uid: db-secret
+    type: basicAuth
+    externalSecret: '{{ tpl (default "" .Values.db.credsExternalSecret) . }}'
+    login: '{{ .Values.db.user }}'
+    password: '{{ .Values.db.password }}'
+    passwordPolicy: required
 
 #################################################################
 # Application configuration defaults.
@@ -36,6 +48,10 @@
 
 # application configuration
 
+db:
+  user: policy_user
+  password: policy_user
+
 # default number of instances
 replicaCount: 1
commit	3d9dc8b0248aa6373c127823d1014b05431c6e87	[log] [tgz]
author	Krzysztof Opasiak <k.opasiak@samsung.com>	Tue Mar 31 23:05:16 2020 +0200
committer	Krzysztof Opasiak <k.opasiak@samsung.com>	Fri Apr 03 23:43:07 2020 +0200
tree	b5cf8b4ad4794ad6e284847cdf39067c9fe559a2
parent	09d1b315194e98f33fc26914c44b8c2173409b8c [diff] [blame]