36 lines
828 B
YAML
36 lines
828 B
YAML
apiVersion: helm.toolkit.fluxcd.io/v2
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: vault
|
|
namespace: vault
|
|
spec:
|
|
dependsOn:
|
|
- name: vault-unseal
|
|
namespace: vault-unseal
|
|
interval: 5m
|
|
timeout: 15m
|
|
values:
|
|
global:
|
|
namespace: vault
|
|
autounseal:
|
|
enabled: true
|
|
transit:
|
|
address: "http://vault-unseal-vault-contour.vault-unseal.svc:8200"
|
|
keyName: "vault-infra-prod"
|
|
mountPath: "transit/"
|
|
tlsSkipVerify: false
|
|
secret:
|
|
name: "vault-transit-autounseal"
|
|
backup:
|
|
schedule: "0 19 * * *"
|
|
timeZone: "Europe/Moscow"
|
|
secret:
|
|
name: "vault-backup-s3"
|
|
endpoint: "https://storage.yandexcloud.net"
|
|
prefix: "vault/yc-infra-prod/raft-snapshots"
|
|
server:
|
|
dataStorage:
|
|
size: 20Gi
|
|
ha:
|
|
replicas: 3
|