File tree 2 files changed +21
-5
lines changed 2 files changed +21
-5
lines changed Original file line number Diff line number Diff line change @@ -91,6 +91,11 @@ Coder volume definitions.
9191 secret:
9292 secretName: { { $secretName | quote }
9393{ { end -}
94+ { { range $secret := .Values.coder.certs.secrets -}
95+ - name: "ca-cert-{ { $secret .name }
96+ secret:
97+ secretName: { { $secret .name | quote }
98+ { { end -}
9499{ {- end }
95100
96101{ {/*
@@ -113,7 +118,13 @@ Coder volume mounts.
113118- name: "tls-{ { $secretName }
114119 mountPath: "/etc/ssl/certs/coder/{ { $secretName }
115120 readOnly: true
116- { { end }
121+ { { end -}
122+ { { range $secret := .Values.coder.certs.secrets -}
123+ - name: "ca-cert-{ { $secret .name }
124+ mountPath: "/etc/ssl/certs/{ { $secret .name }
125+ subPath: { { $secret .key | quote }
126+ readOnly: true
127+ { { end -}
117128{ {- end }
118129
119130{ {/*
Original file line number Diff line number Diff line change @@ -65,12 +65,17 @@ coder:
6565 # cpu: 100m
6666 # memory: 128Mi
6767
68- # coder.certs -- Certificate to mount inside the Coder pod (e.g. CA bundle) .
68+ # coder.certs -- CA bundles to mount inside the Coder pod.
6969 certs :
70- # coder.certs.secretNames -- A list of CA certificate secrets to mount into
71- # the Coder pod. The secrets should exist in the same namespace as the Helm
70+ # coder.certs.secrets -- A list of CA bundle secrets to mount into the Coder
71+ # pod. The secrets should exist in the same namespace as the Helm
7272 # deployment.
73- secretNames : []
73+ #
74+ # The given key in each secret is mounted at
75+ # `/etc/ssl/certs/{secret_name}.crt`.
76+ secrets : []
77+ # - name: "my-ca-bundle"
78+ # key: "ca-bundle.crt"
7479
7580 # coder.service -- The Service object to expose for Coder.
7681 service :
You can’t perform that action at this time.
0 commit comments