From 805e0f2af438cfec2b3842a6269483ebd5aa5717 Mon Sep 17 00:00:00 2001 From: Jenna Villaflor Date: Wed, 19 Feb 2025 08:55:19 -0500 Subject: [PATCH 1/2] chore(prismacloud):CD-2242 --- cks-1.0.0.tgz | Bin 0 -> 8626 bytes cks/Chart.yaml | 6 +-- cks/README.md | 35 ++++++++++++++ cks/values.yaml | 51 +++++++++++++++----- index.yaml | 126 ++++++++++++++++++++++++++---------------------- 5 files changed, 146 insertions(+), 72 deletions(-) create mode 100644 cks-1.0.0.tgz diff --git a/cks-1.0.0.tgz b/cks-1.0.0.tgz new file mode 100644 index 0000000000000000000000000000000000000000..f2fc0d8cbafde3565fb77831d8fd65acafab25d1 GIT binary patch literal 8626 zcmV;jAx+*NiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0PKDHQ{=YN==s@yMPIY0_Hh}{@L1Tml2mbkO~~#7AF!KB(^@=gN@C>KL#r+n;WnH0fWB=o#s;6l6!o7g(aM`>5TsNlf)z@?+yY6(1xqLlxqwehC{aREO2sEs zNVptxxMXq+io=BDWJE!YDHFgib2z6{8RTR_V@S?rpr!?lffPl?5`xf!3)l2YG>8Vl z-%XqU4G+ry1<6V(|2hS*SpHYmUaxPq2$rDN1K2MoXH)F%0AsMId*@USWRtC16 z_uTXWTS|DYK?`6LGNKWfB5%0>t00#_QVL_G3K{qNvMdTNRCJ+7EK2yKKTi5I@0GGo zgkniXWq)mBFj!k3tbMh*w$?kM86}eT_PL_6XGXebN4n=m8b{Q9JLXx5=*iw&E+$lD zQ}<=ts(!52JEr1-ir)6S<0#O$#{qz#1(ysv9oJoxKDKBK0E#lp4td6sX$*VAeXb4# zl{8lYz!Dr>P$5`~JT#_;E}+N=?Tw_6*0jdYwLkM*LT%Ba0I*IBVQ8s-pp6>I0F4rG z+eXD(+wYD+7*a*rZaFM8h$e)Y%EL0tKv2m`kx<=06yUoVIDs{&TS=mMPxrUigX4lG zY{)1YRjS5R0I6&*F=auHd6}h}#RVmbrjci$T_GmjS2&wGS|Ksa+ZdE6scZEERU{>f z0LgQ%G*4=|C8?Gj>{$zb#p=2oofK+{z`go0T;DqQCu3@CpcF)a-ySCdMJk(y<%r9W5}vp!wWf_%Isp!O$EK%lLa-Zi|p#A!zqykMrMT%o96Wcr=vQa6F zb8ICgo-bRj9y->@a@$#n{Iz%3l6&KLS6@;0a-m{aUth!Df-9czEQXWqLyOT~uBgyb zQkz>{3CWyRI-rjLAUzE+?y7DZDTo?ZEn)?H5kvn~ z^~#hv(d@N1DKd(~uL)p{S>hE%e~IR4?7ad<_Wf#-*zxhuV^)>P7=Hf62xJeHhoH*V zMlYa8uLvU2Q<=0{slmZQOvR3dS-|E-CnwJq=*Xnw&2&y6p9$HbWl6%IcdB z%y!WX`Tc5GW-1kz3CWO=n1qzcS#?6{G7Xh7B$=$8G?ueTIf1;IouIc808ChZWacq4 zhLx%~xtdd)TzSO@16N`D@FS?PpmL0}9%K`XQe#^4X7Eq#QHv2(+lL=NDwbI{;E;+0 zC4WR?cw?ZNVjnbB=9g^xWU=Q1=RBp5ku#cA?imyrNvN?l`1zP-G*Mi54pmoG1^Owb;W76;1?`4J{t<$+09=TbNU6pr{G8^;I6EXGYVGVdEhAp1g+!C)mS$}{cR=o#+fk`yKQoK6o7`Go1^kZIL6o{(g#RO2>k zzh0^ZulJ-Z(ZzEUc2Y2J`dgR#;qqKs%t$i9V*Ot)&n0rhzbX}Bd>Qo2?VQMVz?=7+ z)2W0rn(@mhSVBY0g+f)EbDZsMV>K-5Dze-dic2yz>p9M<@WQa>68t!38O8Z0LklU4 zcSVx1(fmVtNkzTPvkXk@hstWvRO4Jqbf*Y5CQ>Mf&`v($08(**Q+n5;^Meh7AM`@9 zwg$-g_H|sbEYi-n5oU6SqtruQ)bDUMYn_bRnKO*oqsW;wHEUm5uT(7jgXFoJ0M(Pr zvuQQmP-7}7NJR??V=8F;umzcw&CRbiH`iak+1%WC{rX{xFnhUFB+GhlnUKo-l_#|K zp5^70U4*fYQ=>aEeBJDK?}y`q{oYXUNe`vHxBc$;+n^#V;^31tIhQ@XgpaQ#I9qqj zS`_{2gGcUKGkI%^wL}^_U5VX)KC$br#c)%3u3wwiR!yOBe%mUKGsTYbcI8!9Fapsq z0-Bm=pGLySvzA4AWv5YAvL?0cNY|w(SaQ^J#d}s6;AG=s5WR_3`wWd)S|(Vf&o9vT zrkDL-$yM3%Byp){dF1PM`~2)znkfDCTUctobe0M~re-xrFOw~S(@loKzQ$Pvx-GUk z%YD5;zpX21yK_W`aiD$sbC#zue0^Mh11{Xe*L(Y|DQ>&qmZxUg5Ojz>k)8}+puzuo z%rAit70vasG);J(prX_x(Ww4+FZ0iRl5^Rw*5CX42PeD7k-Ab}w2eFVf7jLqYpwmC zwe^k7r~RMDcvd3#j;i*g6+RxlpH;tT&PkriIJmy<0UJW}$?P1ubqu#Ya(k;w2)!Qh z4CmVre=}2B&%?1SKwUc0s|@BXDyi#hZ0K3LuF9~CyuJpU72n>*{r>f}X-dO|+uQ4F z1FUYr6b;%xGfA-xyS^wP+~=uYWC$yi?aD)>SJpHKpigiz(rgI}WDB5@nKbq|S< zSe|5MN+C?nW#ksPLx|w^_GJsLy~7q#dK&YGP-BWtG*(g(RmzB@DGmeG@9ZD9p++DX zb3JfzzyHjl5kITQG>78vIZ6LTGBm7W5!C?zRa6XnXxXNq$T_;DLwbo*-%@$|mp(|? zJG9d~azR*zOd9zsOFvnU`m$OhGyOy>;7P&r2amA4NT7Fl$GAPO$L)Cc=+oYI$Ixj& z_i1r)Q_$->VELeBR&su-hV)p3L8m$ukH^QAEwPR;>6md;7abU7Drf>HT{5%+aS)&(u4yh)bn)s@F#KRAU={Vv;F0 z#4D?t(I6T`EAgAbn}OZ4Gph@p5eac3Z85(W#)t*_;Fm|Pam-=MWOuUGt|;8owM zYrPB7P>8+yi(WB`%+U+2`<(vv4?MsPC{gAKY^>>@Y;s%vkL zq|lyC;kS}xY{+Pe`omgey1c>`5Pu10G$E*-B%e@tS1E4O(;=f-DuD=Ub^xe7 z<-jDoIGbuJ?Cc+7S-oOb(Bx$l>q?*?q|HRq;JdM*V7TNuVmdbxIud^@b!O8uec{1)GhW5wI6rdBp zj2!>n7WF^tY5IR|iQg^LP#$!c3=c$8v|}5_ z%8LI)CK*I<13Al6nk!g+(iDrHmi+4trU@y&=w*;QoJvjwcRi(fjcT*O*J*Rh^!Wb5O}_n%J=-tF#xK0Y}(+WKzy^T|(# zySm-VL8#80gubRQSVx`bR19hz!1wk)f7tzSaP-sX-Tm!@oxT0FI5yltLK zp3x?}!-Jy}1Hjes4)NNxS}gakgM*XL+u!eQzuP_fynpa+_ow5}M<3s}2gV)C=^|Kt ze#g+J0dnsHV)FU$1wNSCTKx(M|+>PPIe#C9-VZy z*Em{a8q`3K4nFPe>>hPNcgH5eJIq~m)S?6ItZWQfM!PU<9cePKzW=bb{aH)JLwKom z3d(ZG4?mtf98~k*R2$OX@$tvqqh|lQ4^egXxN-W*^tXci!;kNdJIBO3ceMbfJE_%z zy7h5qZ+Cxtx9$Jf%H9FHe;fCsY5zUh|AG#{9rk}?bA6-j|F5hLp6vf)Jih%WMIrl@ z6R=b9!sB@XvY<(9?x5&B#~n)2jOFy0COl7N3>*58a>t~_J2&kgL(ta`?Ez;`CjHBv zGv@=aPS<74M*Z0Wrm9;hGCkLqF5Y{j=pe@I>RC;c4GUBWqUdO9Ufv>))-Zr_tUT zaa9K&nqRyXeB$4q=|SQ=cYO#B8qYl?w?XjxtPJ?=8*gb*<8yr-w5!#!KogAyV|cjT z7q5zW?J0-()dn*(ZqnCuW8pl)y#L|&V81~EeFU~WV3wx@RqyDugKGLDx_6+tr*Oj2 z`&IIMresZF@9^Y3X*u(9E~7&?v&*@hzOvecZ0?0OW*p|4dwowFZg1n6&x(xTroA`S z*j5PJtsHtc%4gu!*Ug*w>7x+M{`R18ETREycDB?SnC5lL`n{keWjU4dQ1CO_Y;Z_e zRtkFJuHeM5*7%M-@OM)-Jh~J05P5pf#YJ8avH(ow)XiZ0|KJ@)v#xCQuUoX^>f2zxuv^K;#O zy)W91e?74(<=;E}W3A1f|260Tt?M9nrzYMqjXK z-s!%9vyF9{Cv#2}{@nxe$WKfD3-T9)0lmxr+gKUQ-2dEsI{*JDPs{(CvyIZ&C8~?` zFILf;TeaHYdoI}TJXa(;mA!_yp-5v&GSPoFmzDTR?UZ&BY_If7X*s8~C9pt2d^BtqUs1 zhb`w@L1?a0tV+v^H8oSfgSC zK6V?C8m&KJH9D5z92rP^hkIssd(JZ4`pl^UXPf2_+ypeR5e+NI%~h9~vMy?4Ygy3N z^5QGFRbA9wzTfNDYAj54uiN^Y(2Xk1(-UPz@9aYZITw2pThh@RW>C}@k1KRrktpZI zkEr`?cE*|!A?l|NTIouh_z?%}(;2U_I#n>cb32bon~&a>n|TX1R-dWwq-oKX$h_gW zOa7bs-wElX>i@y)`LFf0&8PYQqdaq_^(Of3qdD#!D%i2&U!a0jCF^rTOn9dNdb3;S z?N}C8l&hWouA=s%x2vNa#`_&8Xr3y2&{3%MhwT4YY+YpcFQf+UT>sl_`+u)D*PrJ9 zkMi8>%4geMYby#{{2uyZ!TGu`tvOsDzMum6H<+(|>8C0Gib`ev?Ik?VsSf`4r`5on z_J6Hy|2J0$PxHS=d0O&cWu$1#06S&>kf$92A1?L~dM(}xy9BsK;t$L2n~r(OpIcLG zAJcV5WG+WkS&MFuHlCGodd9EpOB*yVhM%8f(dWOo^CMy;@#SKAEr_6{Aqk4?tK2Ea zeR@HKr>5>6f0X}dOtT3aU&(-#>FlAMzfl~vL&8**2I9Mdd=QO3{AO$U~bmO;==hZNV-YVSSC(_jg5Ix-O^ zUlf84*%eKV?Ejya5gg>%6nL&{B1%wDp`-mrL9}!HSs!-@mcRx!`LuluDHAe?Mojhf zzXtsvI{RJp^}p`Lc+|&#+@JCy@7I8EVqX?I#J3DyMe?!;UPWi*Ja`qU3I67Sje=MI zFIa+4L@-`T*xT8a0s8d6(nJLjODXA_;)4GgL>DsQDeeC!I0-2KN4r})A9kZj`WLma zSpHWBE9>q3|CP0sC;5MrXGv$fskgu2f)V(hW|JUTGHKT?7`+SvE%^A}20hZjt;}52 zW)yfX!6k!(cXSFSG`7tbScTXWl%yuUR?3sI$`1o5&<>2%FCdwsCfaupyn>&-*jVsHVLjLmNL9xJJZ?12yY;0_<4Za$z^|s#~_iDhs#KfO`iR~d_bdPK5JiMum&6Ty+ zuQvxPuXR%{n7G&EOQiG?Y)M&8bohITy>)rgOmM{61WUjqoSMc@ZE+XRKV?F%22B05 zV>-yc39t=zsog8+;E$^T*2CW*Gx7kHRL4rgvi2mL$pCXkhiEuPCTACDr^KmtJ=!L$ z6!y&KpU~+k(50klBZZhtCX>)y+HkHquq2%jrn5!~83nKWKyG%-8W3%Fy(~3V#-n7+ zxzxE#-n0B%o4v#sf+XW*>hflY7K7S+3IMO*=dB-)t5!9E8P99hNO>Y7aw#J+A-{8- zL8(vAWnWLRR3E!ADp^YVW^5eKMPoI|UYZ8J+df>-fW|W#aX!kZhF-^$>d}0}a;kCY zkNIU!anlUTM?KQ}o#!O0ncQ^d_fpWix-(&k;F1rO>5XA?tk@^#(r^EgWanxucsUyP zbl!HdD z3(o1ZAk4In6}Czg34TuVs&hKw6if&@N>mG;RTGBujukDWQ4-sYlpk6mg^@_&W%s!x zQweHJlurkz9c-2b8!F9D$CUFrJsQ1YQcH4oJ^?RT+AOK%+!Q5eQ!h)&X?~aM2Ugh`*IAInSoit5;?O^>thPI@?8SWF0B2g;l8b z3a)6b7|C=tt`W7viyhX*a%z}=Le6O=1f4`&LL^S@F5GDl{8fqbq6JCwmUV948RScS z6WQ1yE)|qHj^k-#$58)!dRIQXV22ho*OM0~W1b~go^6_>X)EEWHdR|ik=d+CooXR? z1v?a9Bi=fv)0vAnp7^OcWbg`huL|yhBsYuNw5lcnB2{jTJn;wub4%OQcHG(^g3GWX z_{3K#I3flWAjtVefg@o|S#SeySw?N}%ugl-4%RorsLBFN;&-?SZlGr$sDE}my69y(NE50MDq*y=G*(8?mRWH>Nqc_2qOeZI6uT7i_>5*0ne6!<`Qi-3Mv)AyqXPB)On!X-3zCH ztZ8vtc>CRP5PXz6xsxJ!N<<1jYd6pu;W>sH|Iq(@u8p-_>O#h}GlNPbVG9+p&aYS% zV-hkZm1D>_2u@E=85kYSVk)Ns_l5+`BA9_9OM^)}J!a*x)*3FR5aXxYb zdRPCZN@0h;41?sw^KFOv*TGj$a=rrAt* zN8G6}b}_4#XNw{Q!q|(SwH&sB`Gm2~tQLk?AX)lLBQu=CstzoLeXBxHEr-phOo+ssh)&C4BVg3LlI2;r9C}fF z!nl?{cH zRD2CW1L(|cI|Ja3W91dhHyW#ZC$!b=c&lv9Q9v#U!Z_R;?sIi$ObsgQDuxRx z-D=0wm#jove?`zyG4}E;7cRj5GDu1vCYNg)gTdPRVC}2bwY8oNp58;3T0Trh-*Pdb zBAdD|ZY>+DSsCqVPgc{#PJ&yWSv`XcQ_$2wQt>Da^DUv7U{4poM&{c>AbsqS3& ze%H-({O7?hEgJm$^h?YAA5Dp`yLw-7GGX}JGKCUs(}Y-Xe$0wRQ-}Lzz1C1$aoFa= zZ7gtDU~(Dt%dpJ!iwVzBcJ;D}c1ZYy)bo+fcxLU!T$*hc4+^B&5s*Mkl0oc2MlWav zFK9H1mSH4#SwKO>gh^BZ@?}TH{AFj^O{#kKyK#KaD9)2%$m}AVzmM=->eU@-kZ%P1 zs}$}UqP$-j8kdMc!V9F$OP$oS%ok?$M^RbR>sg%``lz)rssk9cskoJ8{8E~f4LBOx zhadZ9!e;Z-+tqB7f_@=>H4SyKVMedm8OxZOIy5>W8G1&&Ng=eJwfT}DsMhet)(M_v zDA!PwqTrIs29Z{*otljl_Fx{W42$8UWsqeu1|ln0Pbb^SdEOJ8Yhx_#O%InwV}WMB zMs4IY6HYSC$=)yyPqq)ywi(S-r?Rti4g+|0M%Xxg+)y($2p@tj$0Sr=XLR&}6Ogmy z{$S5=wH842ny6ixY~>c|AZBN~cJ==T&N$DoK{SH8CzXP`98)!>0?17M5;^8&mTHMI zTbL1S%@p!BIPai=UFB@+@RNIGQPI03IakPuTJ&ts^lH5>q|G}rozDFvy%|Wo;o&^A zD$=Gwv^wp!kmo|T`ZnhLJd8uEg%jU~gJBFfl_pEz0^;~#hHmsK9JcxMFHJk-1ko>z zjG&}$wni%`MVD|JUvg()ARH^J)O`04*&rF|KX#8r~sS* E00*`hl>h($ literal 0 HcmV?d00001 diff --git a/cks/Chart.yaml b/cks/Chart.yaml index 66dd0a1f..08bec0c0 100644 --- a/cks/Chart.yaml +++ b/cks/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 -name: cks +appVersion: v1.18.0 description: A service for Virtru customers who wish to manage their own keys +name: cks type: application -version: 0.8.8 -appVersion: v1.16.0 \ No newline at end of file +version: 1.0.0 \ No newline at end of file diff --git a/cks/README.md b/cks/README.md index efaac83c..ad1dd47b 100644 --- a/cks/README.md +++ b/cks/README.md @@ -69,3 +69,38 @@ Use a standard [helm install](https://helm.sh/docs/helm/helm_install/) command t ```sh helm install -n virtru -f ./values.yaml cks ./ --create-namespace ``` +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| affinity | object | `{}` | Optional: Controls scheduling rules to optimize workload distribution. | +| appConfig | object | `{"authTokenStoreageMemoryEncoding":"base64","authTokenStoreageType":"in-memory","hmacAuthEnabled":true,"jwtAuthEnabled":true,"jwtAuthIssuer":"https://api.virtru.com","jwtAuthJwksPath":"/acm/api/jwks","keyProviderType":"file","logRsyslogEnabled":false,"logStdoutEnabled":true,"noKeysRule":"importPEM","privateKeyPath":"/run/secrets/rsa001.pem","publicKeyPath":"/run/secrets/rsa001.pub","virtruOrgId":""}` | Application Configuration | +| appConfig.virtruOrgId | string | `""` | The orgId will be provided to you by your Virtru representative. | +| appSecrets | object | `{"virtruAuth":{"data":{"authTokenJson":""},"name":"hmac-auth"},"virtruKeys":{"data":{"rsa001.pem":"\n","rsa001.pub":"\n"},"mountPath":"/app/keys","name":"cks-keys"}}` | Secrets Management | +| appSecrets.virtruAuth.data.authTokenJson | string | `""` | This base64-encoded value for authTokenJson can be generated by running these steps here: https://support.virtru.com/hc/en-us/articles/17797745877655-Virtru-Private-Keystore-for-Virtru-Solutions-Install-First-Instance-Linux-Server | +| appSecrets.virtruKeys.data."rsa001.pub" | string | `"\n"` | The values for rsa001.pub and rsa001.pem can be generated by running these steps here: https://support.virtru.com/hc/en-us/articles/17797745877655-Virtru-Private-Keystore-for-Virtru-Solutions-Install-First-Instance-Linux-Server | +| autoscaling | object | `{"enabled":false,"maxReplicas":100,"minReplicas":1,"targetCPUUtilizationPercentage":80}` | Autoscaling is disabled by default. | +| autoscaling.maxReplicas | int | `100` | Maximum number of pods | +| autoscaling.minReplicas | int | `1` | Minimum number of pods | +| autoscaling.targetCPUUtilizationPercentage | int | `80` | CPU threshold for scaling. Default is 80% | +| deployment | object | `{"port":9000}` | Internal application port used for the deployment. | +| deployment.port | int | `9000` | The CKS will use the default internal port 9000. | +| fullnameOverride | string | `""` | Optional override for the full resource name. | +| image | object | `{"pullPolicy":"IfNotPresent","repository":"containers.virtru.com/cks","tag":""}` | For version, see https://support.virtru.com/hc/en-us/articles/360034039233-Release-Notes-Virtru-Private-Keystore-for-Virtru-Solutions-Formerly-Virtru-Customer-Key-Server-CKS. | +| ingress | object | `{"annotations":null,"enabled":true,"hosts":[{"host":"fqdn.yourdomain.com","paths":[{"backend":{"serviceName":"cks","servicePort":443},"path":"/*","pathType":"ImplementationSpecific"}]}],"tls":[]}` | This is enabled by default. | +| ingress.hosts[0] | object | `{"host":"fqdn.yourdomain.com","paths":[{"backend":{"serviceName":"cks","servicePort":443},"path":"/*","pathType":"ImplementationSpecific"}]}` | Change fqdn.yourdomain.com to match the FQDN of your CKS. | +| nameOverride | string | `""` | Optional name override for the CKS release. | +| nodeSelector | object | `{}` | Optional: Specifies node labels for pod placement. | +| podAnnotations | object | `{}` | Optional annotations for pods, useful for monitoring or automation. | +| podSecurityContext | object | `{}` | Defines security settings at the pod level (e.g., group permissions). Defaults to empty, can be customized to better fit your organization's needs. | +| replicaCount | int | `3` | Number of instances (pods) to run for the application. Default is 3 but can be customized to fit your org's needs. | +| resources | object | `{}` | Allows defining CPU/memory limits and requests for the application. Defaults to empty for flexibility. | +| revisionHistoryLimit | int | `10` | Number of old deployments retained for rollback purposes. Default is 10. | +| securityContext | object | `{}` | Defines security settings at the container level, such as running as a non-root user. Defaults to empty for flexibility. | +| service | object | `{"annotations":{},"port":443,"protocol":"TCP","type":"ClusterIP"}` | Service Configuration | +| service.type | string | `"ClusterIP"` | Service type is ClusterIP by default. | +| serviceAccount.annotations | object | `{}` | Metadata annotations to add to the service account. Defaults to empty. | +| serviceAccount.create | bool | `true` | Specifies whether a service account should be created. A service account is created by default. | +| serviceAccount.name | string | `""` | The name of the service account to use. If not set and create is set to true, a name is generated using the fullname template. | +| testerPod | object | `{"annotations":{"helm.sh/hook":"test"},"enabled":true}` | Test pod is created by default. | +| tolerations | list | `[]` | Optional: Defines tolerations to allow pods to be scheduled on tainted nodes. | \ No newline at end of file diff --git a/cks/values.yaml b/cks/values.yaml index 40302fde..f4b92a2c 100644 --- a/cks/values.yaml +++ b/cks/values.yaml @@ -1,40 +1,49 @@ -# Default values for cks. +# Default values for the Virtru Private Keystore (CKS). # This is a YAML-formatted file. # Declare variables to be passed into your templates. +# -- Number of instances (pods) to run for the application. Default is 3 but can be customized to fit your org's needs. replicaCount: 3 +# -- Number of old deployments retained for rollback purposes. Default is 10. revisionHistoryLimit: 10 +# -- Location of container image. +# -- For version, see https://support.virtru.com/hc/en-us/articles/360034039233-Release-Notes-Virtru-Private-Keystore-for-Virtru-Solutions-Formerly-Virtru-Customer-Key-Server-CKS. image: repository: containers.virtru.com/cks pullPolicy: IfNotPresent - # Overrides the image tag whose default is the chart appVersion. + # Overrides the image tag whose default is the Chart.yaml's appVersion. tag: "" +# -- Optional name override for the CKS release. nameOverride: "" +# -- Optional override for the full resource name. fullnameOverride: "" serviceAccount: - # Specifies whether a service account should be created + # -- Specifies whether a service account should be created. A service account is created by default. create: true - # Annotations to add to the service account + # -- Metadata annotations to add to the service account. Defaults to empty. annotations: {} - # The name of the service account to use. - # If not set and create is true, a name is generated using the fullname template + # -- The name of the service account to use. If not set and create is set to true, a name is generated using the fullname template. name: "" +# -- Optional annotations for pods, useful for monitoring or automation. podAnnotations: {} +# -- Test pod is created by default. testerPod: enabled: true annotations: helm.sh/hook: test +# -- Defines security settings at the pod level (e.g., group permissions). Defaults to empty, can be customized to better fit your organization's needs. podSecurityContext: {} # fsGroup: 2000 +# -- Defines security settings at the container level, such as running as a non-root user. Defaults to empty for flexibility. securityContext: {} # capabilities: @@ -44,22 +53,29 @@ securityContext: # runAsNonRoot: true # runAsUser: 1000 +# -- Service Configuration service: annotations: {} + # -- Service type is ClusterIP by default. type: ClusterIP port: 443 protocol: TCP +# -- Internal application port used for the deployment. deployment: + # -- The CKS will use the default internal port 9000. port: 9000 +# -- Ingress Configuration. To serve traffic appropriately, you must have an ingress controller for your CKS service +# -- This is enabled by default. ingress: enabled: true annotations: # kubernetes.io/ingress.class: nginx # kubernetes.io/tls-acme: "true" hosts: - - host: chart-example.local + # -- Change fqdn.yourdomain.com to match the FQDN of your CKS. + - host: fqdn.yourdomain.com paths: - path: /* pathType: ImplementationSpecific @@ -71,10 +87,11 @@ ingress: # hosts: # - chart-example.local +# -- Allows defining CPU/memory limits and requests for the application. Defaults to empty for flexibility. resources: {} # We usually recommend not to specify default resources and to leave this as a conscious - # choice for the user. This also increases chances charts run on environments with little + # choice for the customer. This also increases chances charts run on environments with little # resources, such as Minikube. If you do want to specify resources, uncomment the following # lines, adjust them as necessary, and remove the curly braces after 'resources:'. # limits: @@ -84,20 +101,29 @@ resources: # cpu: 100m # memory: 128Mi +# -- Autoscaling is disabled by default. autoscaling: enabled: false + # -- Minimum number of pods minReplicas: 1 + # -- Maximum number of pods maxReplicas: 100 + # -- CPU threshold for scaling. Default is 80% targetCPUUtilizationPercentage: 80 # targetMemoryUtilizationPercentage: 80 +# -- Optional: Specifies node labels for pod placement. nodeSelector: {} +# -- Optional: Defines tolerations to allow pods to be scheduled on tainted nodes. tolerations: [] +# -- Optional: Controls scheduling rules to optimize workload distribution. affinity: {} +# -- Application Configuration appConfig: + # -- The orgId will be provided to you by your Virtru representative. virtruOrgId: "" authTokenStoreageType: in-memory authTokenStoreageMemoryEncoding: base64 @@ -117,21 +143,25 @@ appConfig: # While a simpler approach with fewer variables, it is recommended you use # a third party secret storage option. +# -- Secrets Management appSecrets: virtruAuth: name: hmac-auth data: - authTokenJson: + # -- This base64-encoded value for authTokenJson can be generated by running these steps here: https://support.virtru.com/hc/en-us/articles/17797745877655-Virtru-Private-Keystore-for-Virtru-Solutions-Install-First-Instance-Linux-Server + authTokenJson: virtruKeys: name: cks-keys mountPath: /app/keys data: + # -- The values for rsa001.pub and rsa001.pem can be generated by running these steps here: https://support.virtru.com/hc/en-us/articles/17797745877655-Virtru-Private-Keystore-for-Virtru-Solutions-Install-First-Instance-Linux-Server rsa001.pub: | rsa001.pem: | +# -- Configuration for integrating with external secret management solutions. #https://external-secrets.io/v0.8.2/introduction/overview/ #externalAppSecrets: #- name: #secret object will be named the same. @@ -139,5 +169,4 @@ appSecrets: # secretStoreRef: # kind: # name: -# refreshInterval: -# +# refreshInterval: \ No newline at end of file diff --git a/index.yaml b/index.yaml index 0af10fe3..4f65297c 100644 --- a/index.yaml +++ b/index.yaml @@ -1,9 +1,19 @@ apiVersion: v1 entries: cks: + - apiVersion: v2 + appVersion: v1.18.0 + created: "2025-02-19T08:50:59.92951-05:00" + description: A service for Virtru customers who wish to manage their own keys + digest: 1e9986ab1c04b32bdce2093304106d27de1e03b34bf812ad1f15533e8d498810 + name: cks + type: application + urls: + - cks-1.0.0.tgz + version: 1.0.0 - apiVersion: v2 appVersion: v1.16.0 - created: "2024-12-12T10:23:40.4212-06:00" + created: "2025-02-19T08:50:59.928999-05:00" description: A service for Virtru customers who wish to manage their own keys digest: 2cfa861c1903236112a12aadac665ff721c77096b356aff1df5511af1cdba89d name: cks @@ -13,7 +23,7 @@ entries: version: 0.8.8 - apiVersion: v2 appVersion: v1.15.0 - created: "2024-12-12T10:23:40.420666-06:00" + created: "2025-02-19T08:50:59.928518-05:00" description: A service for Virtru customers who wish to manage their own keys digest: bd3eea02a8b07b522957082972d2ae3e51d35c7073cd2da60d9db55d6da7563d name: cks @@ -23,7 +33,7 @@ entries: version: 0.8.7 - apiVersion: v2 appVersion: v1.13.0 - created: "2024-12-12T10:23:40.420183-06:00" + created: "2025-02-19T08:50:59.927961-05:00" description: A service for Virtru customers who wish to manage their own keys digest: 7425699c8784e4181f007be7be906380bf7b0078a2df14901c3af7d2a87170ae name: cks @@ -33,7 +43,7 @@ entries: version: 0.8.6 - apiVersion: v2 appVersion: v1.12.0 - created: "2024-12-12T10:23:40.419504-06:00" + created: "2025-02-19T08:50:59.926185-05:00" description: A service for Virtru customers who wish to manage their own keys digest: f9628f527bdbda0475f49ecac2b035f4b7c2eaf99c242f0c7772f38cbf4be47b name: cks @@ -43,7 +53,7 @@ entries: version: 0.8.5 - apiVersion: v2 appVersion: v1.10.0 - created: "2024-12-12T10:23:40.418925-06:00" + created: "2025-02-19T08:50:59.925545-05:00" description: A service for Virtru customers who wish to manage their own keys digest: 366716a9b69c570ed8a74b418a9e869951634a342ec6925c07311f5fc90b0785 name: cks @@ -54,7 +64,7 @@ entries: common-lib: - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.421404-06:00" + created: "2025-02-19T08:50:59.929766-05:00" description: Common helper library digest: 66c249a5ad2b9fc12404f69d75638773d500513d628b7a9e0e45798021b77d9f name: common-lib @@ -65,7 +75,7 @@ entries: cse: - apiVersion: v2 appVersion: v5.9.1 - created: "2024-12-12T10:23:40.425759-06:00" + created: "2025-02-19T08:50:59.934705-05:00" description: A Helm chart for Kubernetes digest: a5bad8ee163fde35407d3aed8b1d4c90819293b71574f82e734ba99e624f4c97 name: cse @@ -75,7 +85,7 @@ entries: version: 0.8.2 - apiVersion: v2 appVersion: v5.9.1 - created: "2024-12-12T10:23:40.42538-06:00" + created: "2025-02-19T08:50:59.933088-05:00" description: A Helm chart for Kubernetes digest: ac668f68f470467b0cf7510b4a49ff366a100c87c950e7054ff94e478d717229 name: cse @@ -85,7 +95,7 @@ entries: version: 0.8.1 - apiVersion: v2 appVersion: v5.8.0 - created: "2024-12-12T10:23:40.423762-06:00" + created: "2025-02-19T08:50:59.932568-05:00" description: A Helm chart for Kubernetes digest: 3b8dfd52b42b32c54303f3a7c5c024ab85fdb1e2cf2b9b3acd913ee6f3b7bb38 name: cse @@ -95,7 +105,7 @@ entries: version: 0.8.0 - apiVersion: v2 appVersion: v5.7.3 - created: "2024-12-12T10:23:40.423198-06:00" + created: "2025-02-19T08:50:59.932045-05:00" description: A Helm chart for Kubernetes digest: 3db368ed7efc3f21e7d9f310981a16022f50dbe251f0de27e749741ca7ee405c name: cse @@ -105,7 +115,7 @@ entries: version: 0.7.13 - apiVersion: v2 appVersion: v5.7.3 - created: "2024-12-12T10:23:40.422683-06:00" + created: "2025-02-19T08:50:59.931519-05:00" description: A Helm chart for Kubernetes digest: 5ceeae9499d1d10675898a63d98cfecfa5699f6868bf7c76f0215196a6e15596 name: cse @@ -115,7 +125,7 @@ entries: version: 0.7.12 - apiVersion: v2 appVersion: v5.7.3 - created: "2024-12-12T10:23:40.422174-06:00" + created: "2025-02-19T08:50:59.931018-05:00" description: A Helm chart for Kubernetes digest: cfb101c7db9a19a416e376396e0c68b2767adfb163b044179cc3f520dee8a038 name: cse @@ -125,7 +135,7 @@ entries: version: 0.7.11 - apiVersion: v2 appVersion: v5.7.1 - created: "2024-12-12T10:23:40.421784-06:00" + created: "2025-02-19T08:50:59.93039-05:00" description: A Helm chart for Kubernetes digest: 6ed78a229dd39fe38948a34aa103af20ed086c53ca09d373c60cc88bcfd9eb4f name: cse @@ -136,7 +146,7 @@ entries: gateway: - apiVersion: v2 appVersion: v2.54.0 - created: "2024-12-12T10:23:40.43176-06:00" + created: "2025-02-19T08:50:59.940053-05:00" description: A Helm chart for Kubernetes digest: 88d907263a2b71bb57615a28587b522fde50b3aeb5afdb641fa2546a3da10936 name: gateway @@ -146,7 +156,7 @@ entries: version: 2.3.0 - apiVersion: v2 appVersion: v2.53.0 - created: "2024-12-12T10:23:40.430692-06:00" + created: "2025-02-19T08:50:59.938875-05:00" description: A Helm chart for Kubernetes digest: ab3ce67d9f250dea99d4bbe6dfbf61c508590bf0a8f0dc47cc523a202910eea4 name: gateway @@ -156,7 +166,7 @@ entries: version: 2.2.2 - apiVersion: v2 appVersion: v2.52.1 - created: "2024-12-12T10:23:40.429305-06:00" + created: "2025-02-19T08:50:59.938196-05:00" description: A Helm chart for Kubernetes digest: d52a853f608ce066f90d24e91940472c6b8af81748fb95be7550912f3a284aec name: gateway @@ -166,7 +176,7 @@ entries: version: 2.2.1 - apiVersion: v2 appVersion: v2.52.0 - created: "2024-12-12T10:23:40.428587-06:00" + created: "2025-02-19T08:50:59.937541-05:00" description: A Helm chart for Kubernetes digest: ce40f6ef50faf2d42c4f9e3999b58bf83765030ac349b5a1d778efbd0bb09e82 name: gateway @@ -176,7 +186,7 @@ entries: version: 2.2.0 - apiVersion: v2 appVersion: v2.51.0 - created: "2024-12-12T10:23:40.427904-06:00" + created: "2025-02-19T08:50:59.936903-05:00" description: A Helm chart for Kubernetes digest: da64a6563a86ab2ce467565f32d82b2ca31d4cd167b4f492c976bdbc3ce40374 name: gateway @@ -186,7 +196,7 @@ entries: version: 2.1.6 - apiVersion: v2 appVersion: v2.50.0 - created: "2024-12-12T10:23:40.427103-06:00" + created: "2025-02-19T08:50:59.936271-05:00" description: A Helm chart for Kubernetes digest: 3a81c4ea628605286d30969297b1b6ef40121fa3e39a2068a6b044a135ad462d name: gateway @@ -196,7 +206,7 @@ entries: version: 2.1.5 - apiVersion: v2 appVersion: v2.48.0 - created: "2024-12-12T10:23:40.426414-06:00" + created: "2025-02-19T08:50:59.935496-05:00" description: A Helm chart for Kubernetes digest: c2bb5f4c97adbdc8f5e1ca7c303e631d633456c35395467ddb20d6ecf6dce210 name: gateway @@ -207,7 +217,7 @@ entries: o365-abac: - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.432947-06:00" + created: "2025-02-19T08:50:59.941241-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -221,7 +231,7 @@ entries: version: 0.2.0 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.432391-06:00" + created: "2025-02-19T08:50:59.940671-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -236,7 +246,7 @@ entries: platform: - apiVersion: v2 appVersion: 0.1.6 - created: "2024-12-12T10:23:40.505884-06:00" + created: "2025-02-19T08:51:00.024258-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -308,7 +318,7 @@ entries: version: 0.4.1 - apiVersion: v2 appVersion: 0.1.5 - created: "2024-12-12T10:23:40.501059-06:00" + created: "2025-02-19T08:51:00.018731-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -380,7 +390,7 @@ entries: version: 0.4.0 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.496467-06:00" + created: "2025-02-19T08:51:00.013173-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -452,7 +462,7 @@ entries: version: 0.3.9 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.491585-06:00" + created: "2025-02-19T08:51:00.007934-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -524,7 +534,7 @@ entries: version: 0.3.7 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.486428-06:00" + created: "2025-02-19T08:51:00.002556-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -596,7 +606,7 @@ entries: version: 0.3.6 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.481054-06:00" + created: "2025-02-19T08:50:59.996992-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -668,7 +678,7 @@ entries: version: 0.3.5 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.476396-06:00" + created: "2025-02-19T08:50:59.991511-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -740,7 +750,7 @@ entries: version: 0.3.4 - apiVersion: v2 appVersion: 0.1.4 - created: "2024-12-12T10:23:40.471795-06:00" + created: "2025-02-19T08:50:59.986088-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -812,7 +822,7 @@ entries: version: 0.3.3 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.466517-06:00" + created: "2025-02-19T08:50:59.980271-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -884,7 +894,7 @@ entries: version: 0.3.2 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.461153-06:00" + created: "2025-02-19T08:50:59.974756-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -956,7 +966,7 @@ entries: version: 0.3.1 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.456603-06:00" + created: "2025-02-19T08:50:59.969624-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -1028,7 +1038,7 @@ entries: version: 0.3.0 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.451871-06:00" + created: "2025-02-19T08:50:59.963796-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -1093,7 +1103,7 @@ entries: version: 0.2.2 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.446981-06:00" + created: "2025-02-19T08:50:59.958165-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -1158,7 +1168,7 @@ entries: version: 0.2.1 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.442733-06:00" + created: "2025-02-19T08:50:59.952578-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -1223,7 +1233,7 @@ entries: version: 0.2.0 - apiVersion: v2 appVersion: 0.1.3 - created: "2024-12-12T10:23:40.438106-06:00" + created: "2025-02-19T08:50:59.947164-05:00" dependencies: - condition: abacus.enabled name: abacus @@ -1289,7 +1299,7 @@ entries: platform-embedded-keycloak: - apiVersion: v2 appVersion: 0.1.2 - created: "2024-12-12T10:23:40.513723-06:00" + created: "2025-02-19T08:51:00.033704-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1307,7 +1317,7 @@ entries: version: 0.1.9 - apiVersion: v2 appVersion: 0.1.1 - created: "2024-12-12T10:23:40.512357-06:00" + created: "2025-02-19T08:51:00.032154-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1325,7 +1335,7 @@ entries: version: 0.1.8 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.510921-06:00" + created: "2025-02-19T08:51:00.030761-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1343,7 +1353,7 @@ entries: version: 0.1.7 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.509644-06:00" + created: "2025-02-19T08:51:00.028871-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1361,7 +1371,7 @@ entries: version: 0.1.6 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.508439-06:00" + created: "2025-02-19T08:51:00.027286-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1379,7 +1389,7 @@ entries: version: 0.1.5 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.507286-06:00" + created: "2025-02-19T08:51:00.025918-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1398,7 +1408,7 @@ entries: platform-embedded-postgresql: - apiVersion: v2 appVersion: 0.3.0 - created: "2024-12-12T10:23:40.519159-06:00" + created: "2025-02-19T08:51:00.039865-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1416,7 +1426,7 @@ entries: version: 0.3.0 - apiVersion: v2 appVersion: 0.2.0 - created: "2024-12-12T10:23:40.516513-06:00" + created: "2025-02-19T08:51:00.037021-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1435,7 +1445,7 @@ entries: platform-keycloak-bootstrapper: - apiVersion: v2 appVersion: 0.1.2 - created: "2024-12-12T10:23:40.522637-06:00" + created: "2025-02-19T08:51:00.043382-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1455,7 +1465,7 @@ entries: version: 0.1.9 - apiVersion: v2 appVersion: 0.1.1 - created: "2024-12-12T10:23:40.521804-06:00" + created: "2025-02-19T08:51:00.042639-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1475,7 +1485,7 @@ entries: version: 0.1.8 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.521224-06:00" + created: "2025-02-19T08:51:00.04213-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1495,7 +1505,7 @@ entries: version: 0.1.7 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.520684-06:00" + created: "2025-02-19T08:51:00.041616-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1515,7 +1525,7 @@ entries: version: 0.1.6 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.520245-06:00" + created: "2025-02-19T08:51:00.041126-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1535,7 +1545,7 @@ entries: version: 0.1.5 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.519714-06:00" + created: "2025-02-19T08:51:00.040479-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1556,7 +1566,7 @@ entries: sharepoint: - apiVersion: v2 appVersion: 0.6.0 - created: "2024-12-12T10:23:40.526435-06:00" + created: "2025-02-19T08:51:00.047138-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1570,7 +1580,7 @@ entries: version: 0.6.0 - apiVersion: v2 appVersion: 0.5.0 - created: "2024-12-12T10:23:40.525798-06:00" + created: "2025-02-19T08:51:00.046503-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1584,7 +1594,7 @@ entries: version: 0.5.0 - apiVersion: v2 appVersion: 0.4.0 - created: "2024-12-12T10:23:40.525202-06:00" + created: "2025-02-19T08:51:00.045971-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1598,7 +1608,7 @@ entries: version: 0.4.0 - apiVersion: v2 appVersion: 0.3.0 - created: "2024-12-12T10:23:40.524527-06:00" + created: "2025-02-19T08:51:00.045421-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1612,7 +1622,7 @@ entries: version: 0.3.0 - apiVersion: v2 appVersion: 0.2.0 - created: "2024-12-12T10:23:40.523947-06:00" + created: "2025-02-19T08:51:00.044843-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1626,7 +1636,7 @@ entries: version: 0.2.0 - apiVersion: v2 appVersion: 0.1.0 - created: "2024-12-12T10:23:40.523343-06:00" + created: "2025-02-19T08:51:00.044162-05:00" dependencies: - name: common-lib repository: file://../common-lib @@ -1638,4 +1648,4 @@ entries: urls: - sharepoint-0.1.0.tgz version: 0.1.0 -generated: "2024-12-12T10:23:40.418169-06:00" +generated: "2025-02-19T08:50:59.924743-05:00" From 0220c9e04cec7cbbf18f8a77a6fdee5269049702 Mon Sep 17 00:00:00 2001 From: Jenna Villaflor Date: Wed, 19 Feb 2025 09:02:24 -0500 Subject: [PATCH 2/2] corrections for values.yaml --- cks/values.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/cks/values.yaml b/cks/values.yaml index f4b92a2c..6d23a44f 100644 --- a/cks/values.yaml +++ b/cks/values.yaml @@ -9,7 +9,7 @@ replicaCount: 3 revisionHistoryLimit: 10 # -- Location of container image. -# -- For version, see https://support.virtru.com/hc/en-us/articles/360034039233-Release-Notes-Virtru-Private-Keystore-for-Virtru-Solutions-Formerly-Virtru-Customer-Key-Server-CKS. +# -- For the latest version, see https://support.virtru.com/hc/en-us/articles/360034039233-Release-Notes-Virtru-Private-Keystore-for-Virtru-Solutions-Formerly-Virtru-Customer-Key-Server-CKS. image: repository: containers.virtru.com/cks pullPolicy: IfNotPresent @@ -169,4 +169,4 @@ appSecrets: # secretStoreRef: # kind: # name: -# refreshInterval: \ No newline at end of file +# refreshInterval: