Gitops: Enable external secrets from Vault to WC cluster

vladimir braquetrequested to merge
enable_external_secret_from_vault_to_wc_user_and_manage_ns into main

What is done

Enable external secrets from Vault to WC cluster and further improvements

  • Add a clusterSecretStore per team and share it with workload cluster namespaces
  • Enable access to private repo for gitops deployment of workload cluster
  • Add labels on all resources
  • Upgrade chart version

Relationships with other repo MR

  • The present MR depends on an MR in Sylva-core because we need Vault roles and ACL to create the clusterSecretStore. This store may be created before any explicit secret for a team because the admin may provision these secrets in advanced
  • The present MR is required for operators new versions workload-cluster-operator & sylva-units-operato

The merging process would be

  • Merge operators MRs with a new tag
  • Merge this chart with a new tag
  • Merge Sylva-code MR

Tests

Edited by vladimir braquet

Merge request reports