Image: ghcr.io/external-secrets/external-secrets:v0.4.3
Updates
- Template engine version v2 is now available! This feature allows the use of sprigs functions.
To use template engine version v2, specifyengineVersion: v2in your template:
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: template
spec:
# ...
target:
name: secret-to-be-created
# this is how the Kind=Secret will look like
template:
type: kubernetes.io/tls
engineVersion: v2
data:
# multiline string
config: |
datasources:
- name: Graphite
type: graphite
access: proxy
url: http://localhost:8080
password: "{{ .password }}"
user: "{{ .user }}"
data:
- secretKey: user
remoteRef:
key: /grafana/user
- secretKey: password
remoteRef:
key: /grafana/password
You can read more about the differences here.
Breaking Changes
None.
General Changes
- Added Template Engine capability, as well as template engine version 2.
- Improved Controller performance by disabling cache for some kubernetes resources.
Provider Changes
AWS Secrets Manager
- AWS Secrets Manager has been promoted to stable
AWS Parameter Store
- AWS Parameter Store has been promoted to stable
Azure Keyvault
- Azure Keyvault has been promoted to beta
- Sanitization of the provider code
GCP Secret Manager
- Fixed a leak in GCPSM when the secret operator could not find the secret
Hashicorp Vault
- Fixed getting values from properties that have
.in their name.