Uploaded image for project: 'AI Platform Core Components'
  1. AI Platform Core Components
  2. AIPCC-11669

Set up integration with Red Hat IT corporate HashiCorp Vault in Konflux

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • AIPCC Productization
    • New Features
    • False
    • Hide

      None

      Show
      None
    • False
    • Productization Sprint 28

      Overview

      Integrate Konflux with Red Hat IT corporate HashiCorp Vault using External Secrets Operator (ESO) to sync secrets into Konflux tenant namespace.

      Steps

      1. Add Authentication Secrets - Add two Key/value secrets to Konflux tenant namespace: Vault app role secret and Red Hat IT root certificate PEM
      2. Create SecretStore via GitOps - Create SecretStore CR in konflux-release-data repository defining Vault connection and authentication
      3. Add Target Secret to Vault - Add secret data to designated Vault path via web UI or CLI
      4. Create ExternalSecret Manifest - Define ExternalSecret YAML referencing SecretStore and Vault path
      5. Generate Manifests and Merge - Run ./build-manifests.sh, commit, open MR, and let ArgoCD reconcile

              xdong@redhat.com Xiyang Dong
              xdong@redhat.com Xiyang Dong
              Klara's Team
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: