Compare commits
	
		
			13 Commits
		
	
	
		
			8bf4292991
			...
			Lerentis/i
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|  | 8ec698f50e | ||
|  | 9b8fe1d8ef | ||
|  | 516f2a34cf | ||
| 361d0866e9 | |||
| 9d4ade904e | |||
| 8c3714f7e0 | |||
| 36ae5cc602 | |||
| d908419b78 | |||
| 2d399ff8ce | |||
| c753737497 | |||
| 886fe3783d | |||
|  | 18a47f8ad2 | ||
|  | e405734e72 | 
							
								
								
									
										55
									
								
								.github/workflows/test-and-lint.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										55
									
								
								.github/workflows/test-and-lint.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,55 @@ | ||||
| name: Lint and Test | ||||
|  | ||||
| on: pull_request | ||||
|  | ||||
| jobs: | ||||
|   lint-test: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - name: Checkout | ||||
|         uses: actions/checkout@v3 | ||||
|         with: | ||||
|           fetch-depth: 0 | ||||
|  | ||||
|       - name: Set up Helm | ||||
|         uses: azure/setup-helm@v3 | ||||
|         with: | ||||
|           version: v3.11.2 | ||||
|  | ||||
|       - uses: actions/setup-python@v4 | ||||
|         with: | ||||
|           python-version: '3.9' | ||||
|           check-latest: true | ||||
|  | ||||
|       - name: Set up chart-testing | ||||
|         uses: helm/chart-testing-action@v2.4.0 | ||||
|  | ||||
|       - name: Run chart-testing (list-changed) | ||||
|         id: list-changed | ||||
|         run: | | ||||
|           changed=$(ct list-changed --target-branch ${{ github.event.repository.default_branch }}) | ||||
|           if [[ -n "$changed" ]]; then | ||||
|             echo "changed=true" >> "$GITHUB_OUTPUT" | ||||
|           fi | ||||
|  | ||||
|       - name: Run chart-testing (lint) | ||||
|         if: steps.list-changed.outputs.changed == 'true' | ||||
|         run: ct lint --target-branch ${{ github.event.repository.default_branch }} | ||||
|  | ||||
|   pr-build: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v2 | ||||
|        | ||||
|       - name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v2 | ||||
|  | ||||
|       - name: "GHCR Build" | ||||
|         id: docker_build | ||||
|         uses: docker/build-push-action@v4 | ||||
|         with: | ||||
|           push: false | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           tags: ghcr.io/lerentis/bitwarden-crd-operator:dev | ||||
|  | ||||
							
								
								
									
										38
									
								
								Dockerfile
									
									
									
									
									
								
							
							
						
						
									
										38
									
								
								Dockerfile
									
									
									
									
									
								
							| @@ -1,12 +1,3 @@ | ||||
| FROM alpine:latest as builder | ||||
|  | ||||
| ARG BW_VERSION=2023.1.0 | ||||
|  | ||||
| RUN apk add wget unzip | ||||
|  | ||||
| RUN cd /tmp && wget https://github.com/bitwarden/clients/releases/download/cli-v${BW_VERSION}/bw-linux-${BW_VERSION}.zip && \ | ||||
|     unzip /tmp/bw-linux-${BW_VERSION}.zip | ||||
|  | ||||
| FROM alpine:3.17.3 | ||||
|  | ||||
| LABEL org.opencontainers.image.source=https://github.com/Lerentis/bitwarden-crd-operator | ||||
| @@ -16,18 +7,37 @@ LABEL org.opencontainers.image.licenses=MIT | ||||
| ARG PYTHON_VERSION=3.10.11-r0 | ||||
| ARG PIP_VERSION=22.3.1-r1 | ||||
| ARG GCOMPAT_VERSION=1.1.0-r0 | ||||
| ARG LIBCRYPTO_VERSION=3.0.8-r4 | ||||
| ARG BW_VERSION=2023.1.0 | ||||
|  | ||||
| COPY --from=builder /tmp/bw /usr/local/bin/bw | ||||
| COPY requirements.txt requirements.txt | ||||
| COPY requirements.txt /requirements.txt | ||||
|  | ||||
| RUN set -eux; \ | ||||
|     apk add --virtual build-dependencies wget unzip; \ | ||||
|     ARCH="$(apk --print-arch)"; \ | ||||
|     case "${ARCH}" in \ | ||||
|        aarch64|arm64) \ | ||||
|           apk add npm; \ | ||||
|           npm install -g @bitwarden/cli@${BW_VERSION}; \ | ||||
|          ;; \ | ||||
|        amd64|x86_64) \ | ||||
|           cd /tmp; \ | ||||
|           wget https://github.com/bitwarden/clients/releases/download/cli-v${BW_VERSION}/bw-linux-${BW_VERSION}.zip; \ | ||||
|           unzip /tmp/bw-linux-${BW_VERSION}.zip; \ | ||||
|          ;; \ | ||||
|        *) \ | ||||
|          echo "Unsupported arch: ${ARCH}"; \ | ||||
|          exit 1; \ | ||||
|          ;; \ | ||||
|     esac; \ | ||||
|     apk del --purge build-dependencies; \ | ||||
|     addgroup -S -g 1000 bw-operator; \ | ||||
|     adduser -S -D -u 1000 -G bw-operator bw-operator; \ | ||||
|     mkdir -p /home/bw-operator; \ | ||||
|     chown -R bw-operator /home/bw-operator; \ | ||||
|     chmod +x /usr/local/bin/bw; \ | ||||
|     apk add gcc musl-dev libstdc++ gcompat=${GCOMPAT_VERSION} python3=${PYTHON_VERSION} py3-pip=${PIP_VERSION}; \ | ||||
|     pip install -r requirements.txt --no-warn-script-location; \ | ||||
|     apk add gcc musl-dev libstdc++ gcompat=${GCOMPAT_VERSION} python3=${PYTHON_VERSION} py3-pip=${PIP_VERSION} libcrypto3=${LIBCRYPTO_VERSION} libssl3=${LIBCRYPTO_VERSION}; \ | ||||
|     pip install -r /requirements.txt --no-warn-script-location; \ | ||||
|     rm /requirements.txt; \ | ||||
|     apk del --purge gcc musl-dev libstdc++; | ||||
|  | ||||
| COPY --chown=bw-operator:bw-operator src /home/bw-operator | ||||
|   | ||||
| @@ -4,9 +4,9 @@ description: Deploy the Bitwarden CRD Operator | ||||
|  | ||||
| type: application | ||||
|  | ||||
| version: "v0.7.0" | ||||
| version: "v0.7.2" | ||||
|  | ||||
| appVersion: "0.6.0" | ||||
| appVersion: "0.6.2" | ||||
|  | ||||
| keywords: | ||||
|   - operator | ||||
| @@ -20,7 +20,7 @@ home: https://lerentis.github.io/bitwarden-crd-operator/ | ||||
| sources: | ||||
|   - https://github.com/Lerentis/bitwarden-crd-operator | ||||
|  | ||||
| kubeVersion: '>= 1.23.0-0' | ||||
| kubeVersion: ">= 1.23.0-0" | ||||
|  | ||||
| maintainers: | ||||
|   - name: lerentis | ||||
| @@ -55,10 +55,10 @@ annotations: | ||||
|         content: | ||||
|           - element: | ||||
|               secretName: username | ||||
|               secretRef: nameofUser  | ||||
|               secretRef: nameofUser | ||||
|           - element: | ||||
|               secretName: password | ||||
|               secretRef: passwordOfUser  | ||||
|               secretRef: passwordOfUser | ||||
|         id: "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee" | ||||
|         name: "test-secret" | ||||
|         namespace: "default" | ||||
| @@ -90,12 +90,13 @@ annotations: | ||||
|             apps: | ||||
|               "some.app.identifier:some_version": | ||||
|                 pubkey: {{ bitwarden_lookup("aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee", "fields", "public_key") }} | ||||
|                 enabled: true   | ||||
|                 enabled: true | ||||
|   artifacthub.io/license: MIT | ||||
|   artifacthub.io/operator: "true"   | ||||
|   artifacthub.io/operator: "true" | ||||
|   artifacthub.io/containsSecurityUpdates: "false" | ||||
|   artifacthub.io/changes: | | ||||
|     - kind: changed | ||||
|       description: "Use JSON output mode (--response) of Bitwarden CLI." | ||||
|     - kind: fixed | ||||
|       description: "Fallback to npm package on ARM as native bitwarden cli package is not compatible with ARM" | ||||
|   artifacthub.io/images: | | ||||
|     - name: bitwarden-crd-operator | ||||
|       image: ghcr.io/lerentis/bitwarden-crd-operator:0.6.0 | ||||
|       image: ghcr.io/lerentis/bitwarden-crd-operator:0.6.2 | ||||
|   | ||||
| @@ -14,15 +14,15 @@ imagePullSecrets: [] | ||||
| nameOverride: "" | ||||
| fullnameOverride: "" | ||||
|  | ||||
| #env: | ||||
| #  - name: BW_HOST | ||||
| #    value: "define_it" | ||||
| #  - name: BW_CLIENTID | ||||
| #    value: "define_it" | ||||
| #  - name: BW_CLIENTSECRET | ||||
| #    value: "define_it" | ||||
| #  - name: BW_PASSWORD | ||||
| #    value: "define_id" | ||||
| # env: | ||||
| #   - name: BW_HOST | ||||
| #     value: "define_it" | ||||
| #   - name: BW_CLIENTID | ||||
| #     value: "define_it" | ||||
| #   - name: BW_CLIENTSECRET | ||||
| #     value: "define_it" | ||||
| #   - name: BW_PASSWORD | ||||
| #     value: "define_id" | ||||
|  | ||||
| externalConfigSecret: | ||||
|   enabled: false | ||||
|   | ||||
							
								
								
									
										14
									
								
								example.yaml
									
									
									
									
									
								
							
							
						
						
									
										14
									
								
								example.yaml
									
									
									
									
									
								
							| @@ -15,4 +15,18 @@ spec: | ||||
|         secretScope: login | ||||
|   id: "88781348-c81c-4367-9801-550360c21295" | ||||
|   name: "test-secret" | ||||
|   namespace: "default" | ||||
| --- | ||||
| apiVersion: "lerentis.uploadfilter24.eu/v1beta4" | ||||
| kind: BitwardenSecret | ||||
| metadata: | ||||
|   name: test-scope | ||||
| spec: | ||||
|   content: | ||||
|     - element: | ||||
|         secretName: public_key | ||||
|         secretRef: pubKey  | ||||
|         secretScope: fields | ||||
|   id: "466fc4b0-ffca-4444-8d88-b59d4de3d928" | ||||
|   name: "test-scope" | ||||
|   namespace: "default" | ||||
| @@ -1,3 +1,3 @@ | ||||
| kopf==1.36.0 | ||||
| kopf==1.36.1 | ||||
| kubernetes==26.1.0 | ||||
| Jinja2==3.1.2 | ||||
|   | ||||
| @@ -46,7 +46,7 @@ def parse_login_scope(secret_json, key): | ||||
|  | ||||
|  | ||||
| def parse_fields_scope(secret_json, key): | ||||
|     if "fields" not in secret_json: | ||||
|     if "fields" not in secret_json["data"]: | ||||
|         return None | ||||
|     for entry in secret_json["data"]["fields"]: | ||||
|         if entry['name'] == key: | ||||
|   | ||||
		Reference in New Issue
	
	Block a user