openshift/openshift-docs
1
0
Fork 0
mirror of https://github.com/openshift/openshift-docs.git synced 2026-02-05 12:46:18 +01:00
Code Issues Releases Activity
Files
b6eef729aa3ad378ee2a19b04297dc43ee28b2c7
openshift-docs/modules/external-secrets-bit-warden-config.adoc
William Gabor b6eef729aa OSDOCS-17319 updated modules
2026-01-06 17:15:30 +00:00

69 lines
2.1 KiB
Plaintext
Raw Blame History

// Module included in the following assemblies:
//
// * security/external_secrets_operator/external-secrets-log-levels.adoc
:_mod-docs-content-type: PROCEDURE
[id="external-secrets-bit-warden-config_{context}"]
= Configuring the bitwardenSecretManagerProvider plugin
[role="_abstract"]
Configure the `bitwardenSecretManagerProvider` plugin to use Bitwarden Secrets Manager as a source for your secrets. By using this integration, you can sync external secrets to your {product-title} cluster.
.Prerequisites
* You have access to the cluster with `cluster-admin` privileges.
* You have created the `ExternalSecretsConfig` custom resource.
.Procedure
. Edit the `ExternalSecretsConfig` custom resource by running the following command:
+
[source,terminal]
----
$ oc edit externalsecretsconfigs.operator.openshift.io cluster
----
. Edit the `spec.plugins.bitwardenSecretManagerProvider` section as follows to enable the Bitwarden Secrets Manager:
+
[source,yaml]
----
apiVersion: operator.openshift.io/v1alpha1
kind: ExternalSecretsConfig
...
spec:
plugins:
bitwardenSecretManagerProvider:
mode: Enabled
secretRef:
name: <secret_object_name>
----
+
where:
name:: The name of the secret containing the certificate key pair for the plugin. The key name in the secret for the certificate must be `tls.crt`. The key name for the private key must be `tls.key`. The key name for the Certificate Authority (CA) certificate key name must be `ca.crt`. Configuring the secret is optional when the cert-manager certificate provider is configured.
. Save your changes and exit the editor.
. If you disable the plugin the following resources must be deleted manually by running the following commands:
[source,terminal]
----
$ oc delete deployments.apps bitwarden-sdk-server -n external-secrets
----
[source,terminal]
----
$ oc delete certificates.cert-manager.io bitwarden-tls-certs -n external-secrets
----
[source,terminal]
----
$ oc delete service bitwarden-sdk-server -n external-secrets
----
[source,terminal]
----
$ oc delete serviceaccounts bitwarden-sdk-server -n external-secrets
----
View Git Blame Copy Permalink