[Helm Chart] Add env, configmap, secret and volumes support

cert-manager / google-cas-issuer

cert-manager issuer for Google CA Service

Apache License 2.0

77 stars 30 forks source link

[Helm Chart] Add env, configmap, secret and volumes support #137

Open iAnomaly opened 8 months ago

iAnomaly commented 8 months ago

We have the use case of using google-cas-issuer outside of GKE but want to lean on GCP's Workload Identity instead of static Service Account credentials.

We can achieve this by using a ConfigMap/Secret mounting the Workload Identity Pool credential configuration JSON and referencing it via the GOOGLE_APPLICATION_CREDENTIALS environment variable.

This PR enables this with the generic solution of supporting arbitrary env, ConfigMap, Secret and volumes/volumeMounts support.

iAnomaly commented 7 months ago

FYI @inteon, let me know if you would like me to make a separate Issue to correspond to this PR and/or if you need anything else from me.

cert-manager-prow[bot] commented 1 month ago

PR needs rebase.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes-sigs/prow](https://github.com/kubernetes-sigs/prow/issues/new?title=Prow%20issue:) repository.