Skip to content
Closed
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
15 changes: 15 additions & 0 deletions base/jenkins/templates/opensearch-1password-token.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: opensearch-1password-sa-token
namespace: {{ template "jenkins.namespace" . }}
spec:
secretStoreRef:
kind: SecretStore
name: onepassword-releng
target:
creationPolicy: Owner
data:
- secretKey: token
remoteRef:
key: "Opensearch 1Password Service Account token/credential"
8 changes: 4 additions & 4 deletions production/values.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -398,18 +398,18 @@ jenkins:
- name: SAML_LOGOUT_URL
value: "https://sso.linuxfoundation.org/samlp/BLgSYAt8E0oXf5EJSWxeuAnUP2JZUg46/logout"

# 1Password Service Account Token (ESO-managed)
# LF Releng 1Password Service Account Token
- name: ONEPASSWORD_SA_TOKEN
valueFrom:
secretKeyRef:
name: onepassword-sa-token
key: token

# 1Password CLI Service Account Token (required by 1Password CLI)
- name: OP_SERVICE_ACCOUNT_TOKEN
# Opensearch 1Password Service Account Token (ESO-managed from 1Password)
- name: OPENSEARCH_ONEPASSWORD_SA_TOKEN
valueFrom:
secretKeyRef:
name: onepassword-sa-token
name: opensearch-onepassword-sa-token
key: token

# EC2 SSH Private Key (ESO-managed from 1Password)
Expand Down