chore: move clustersecretstore in onepassword ks

Signed-off-by: Devin Buhl <devin@buhl.casa>

kubernetes/apps/actions-runner-system/actions-runner-controller/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/actions-runner-system/actions-runner-controller/app

kubernetes/apps/cert-manager/cert-manager/ks.yaml

@@ -31,7 +31,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   healthCheckExprs:
     - apiVersion: cert-manager.io/v1
@@ -62,7 +62,7 @@ spec:
   dependsOn:
     - name: cert-manager-issuers
       namespace: cert-manager
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   healthCheckExprs:
     - apiVersion: cert-manager.io/v1

kubernetes/apps/default/autobrr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/bazarr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/beets/ks.yaml

@@ -12,7 +12,7 @@ spec:
   components:
     - ../../../../components/gatus/guarded
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/default/beets/app

kubernetes/apps/default/cross-seed/ks.yaml

@@ -12,7 +12,7 @@ spec:
   components:
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: volsync
       namespace: volsync-system

kubernetes/apps/default/emqx/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/default/emqx/app

kubernetes/apps/default/home-assistant/ks.yaml

@@ -15,7 +15,7 @@ spec:
   dependsOn:
     - name: emqx-cluster
       namespace: default
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/jellyseerr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/external
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/plex/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/external
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph
@@ -47,7 +47,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/default/plex/tools

kubernetes/apps/default/prowlarr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/qbittorrent/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph
@@ -46,7 +46,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/default/qbittorrent/tools

kubernetes/apps/default/radarr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/recyclarr/ks.yaml

@@ -12,7 +12,7 @@ spec:
   components:
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/sabnzbd/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/slskd/ks.yaml

@@ -12,7 +12,7 @@ spec:
   components:
     - ../../../../components/gatus/guarded
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/sonarr/ks.yaml

@@ -13,7 +13,7 @@ spec:
     - ../../../../components/gatus/guarded
     - ../../../../components/volsync
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/default/unpackerr/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/default/unpackerr/app

kubernetes/apps/default/zigbee/ks.yaml

@@ -15,7 +15,7 @@ spec:
   dependsOn:
     - name: emqx-cluster
       namespace: default
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
     - name: rook-ceph-cluster
       namespace: rook-ceph

kubernetes/apps/external-secrets/onepassword/store/clustersecretstore.yaml → kubernetes/apps/external-secrets/onepassword/app/clustersecretstore.yaml

@@ -13,6 +13,6 @@ spec:
       auth:
         secretRef:
           connectTokenSecretRef:
-            name: onepassword-secret
             key: token
+            name: onepassword-secret
             namespace: external-secrets

kubernetes/apps/external-secrets/onepassword/app/kustomization.yaml

@@ -3,4 +3,5 @@
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
+  - ./clustersecretstore.yaml
   - ./helmrelease.yaml

kubernetes/apps/external-secrets/onepassword/ks.yaml

@@ -9,42 +9,18 @@ spec:
   commonMetadata:
     labels:
       app.kubernetes.io/name: *app
-  interval: 30m
-  path: ./kubernetes/apps/external-secrets/onepassword/app
-  prune: true
-  sourceRef:
-    kind: GitRepository
-    name: flux-system
-    namespace: flux-system
-  targetNamespace: *namespace
-  timeout: 5m
-  wait: true
----
-# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
-apiVersion: kustomize.toolkit.fluxcd.io/v1
-kind: Kustomization
-metadata:
-  name: &app onepassword-store
-  namespace: &namespace external-secrets
-spec:
-  commonMetadata:
-    labels:
-      app.kubernetes.io/name: *app
-  dependsOn:
-    - name: onepassword
-      namespace: external-secrets
   healthCheckExprs:
     - apiVersion: external-secrets.io/v1beta1
       kind: ClusterSecretStore
       failed: status.conditions.filter(e, e.type == 'Ready').all(e, e.status == 'False')
       current: status.conditions.filter(e, e.type == 'Ready').all(e, e.status == 'True')
   interval: 30m
-  path: ./kubernetes/apps/external-secrets/onepassword/store
+  path: ./kubernetes/apps/external-secrets/onepassword/app
   prune: true
   sourceRef:
     kind: GitRepository
     name: flux-system
     namespace: flux-system
   targetNamespace: *namespace
-  timeout: 5m
+  timeout: 15m
   wait: true

kubernetes/apps/network/external/ks.yaml

@@ -12,7 +12,7 @@ spec:
   dependsOn:
     - name: external-external-dns
       namespace: network
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/network/external/cloudflared
@@ -36,7 +36,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/network/external/external-dns

kubernetes/apps/network/internal/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/network/internal/external-dns

kubernetes/apps/observability/grafana/ks.yaml

@@ -12,7 +12,7 @@ spec:
   components:
     - ../../../../components/gatus/guarded
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/observability/grafana/app

kubernetes/apps/observability/kube-prometheus-stack/ks.yaml

@@ -14,7 +14,7 @@ spec:
   dependsOn:
     - name: rook-ceph-cluster
       namespace: rook-ceph
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/observability/kube-prometheus-stack/app

kubernetes/apps/observability/unpoller/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/observability/unpoller/app

kubernetes/apps/rook-ceph/rook-ceph/ks.yaml

@@ -10,7 +10,7 @@ spec:
     labels:
       app.kubernetes.io/name: *app
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   interval: 30m
   path: ./kubernetes/apps/rook-ceph/rook-ceph/app
@@ -36,7 +36,7 @@ spec:
   components:
     - ../../../../components/gatus/guarded
   dependsOn:
-    - name: onepassword-store
+    - name: onepassword
       namespace: external-secrets
   healthChecks:
     - apiVersion: helm.toolkit.fluxcd.io/v2