Skip to content

Instantly share code, notes, and snippets.

View SamuelBagattin's full-sized avatar
🏠
Personal projects

Samuel Bagattin SamuelBagattin

🏠
Personal projects
8 followers · 6 following
View GitHub Profile
@SamuelBagattin
SamuelBagattin / irsa_app_2.go
Created April 4, 2022 17:36
// Requesting temporary credentials
identity, err := initStsClient.AssumeRoleWithWebIdentity(
&sts.AssumeRoleWithWebIdentityInput{
RoleArn: aws.String(awsRoleArn),
RoleSessionName: aws.String("my-app"),
WebIdentityToken: aws.String(string(awsWebIdentityToken)),
DurationSeconds: aws.Int64(3600),
})
if err != nil {
panic(err)
@SamuelBagattin
SamuelBagattin / irsa_app_sample_output.txt
Created April 4, 2022 17:45
2022/04/04 00:00:00 {
"Account": "999999999999",
"Arn": "arn:aws:sts::999999999999:assumed-role/my-pod-role/my-app",
"UserId": "IEHDGSBEHDISKGPCMXNSH:my-app"
}
2022/04/04 00:00:00 {
"Buckets": [
{
"CreationDate": "2022-04-04T00:00:00Z",
"Name": "my-bucket"
@SamuelBagattin
SamuelBagattin / medium-sops-kms-argocd-sops.yaml
Created September 19, 2022 07:13
---
creation_rules:
- kms: 'arn:aws:kms:REGION:ACCOUNT:key/KEY_ID' # Change to the arn of your KMS CMK
encrypted_regex: '^secureJsonData$'
@SamuelBagattin
SamuelBagattin / medium-sops-kms-argocd-secretsyaml-unencrypted.yaml
Created September 19, 2022 09:31
datasources:
datasources.yaml:
apiVersion: 1
datasources:
- name: GitHub
type: grafana-github-datasource
readOnly: false
secureJsonData:
accessToken: ghp_pl33iuze8hd9bbz55
@SamuelBagattin
SamuelBagattin / medium-sops-kms-argocd-argocd-server-helm-values.yaml
Created September 19, 2022 10:14
server:
config:
helm.valuesFileSchemes: >-
secrets
@SamuelBagattin
SamuelBagattin / medium-sops-kms-argocd-argocd-application.yaml
Created September 19, 2022 15:41
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: grafana
spec:
project: default
source:
repoURL: https://github.com/my-org/my-repo.git
targetRevision: HEAD
helm:
@SamuelBagattin
SamuelBagattin / medium-sops-kms-argocd-secretsyaml-encrypted.yaml
Created September 19, 2022 17:05
datasources:
datasources.yaml:
apiVersion: 1
datasources:
- name: GitHub
type: grafana-github-datasource
readOnly: false
secureJsonData:
accessToken: ENC[AES256_GCM,data:ZK_/rtGO$539;2oc2w~~OVaMl$05y9686e7n4/l4Ot5Vl:~=ool:3@Vrrico2FCe8^c60ZFpPH68,tag:mpm1"39q&g%!xFV5^#cZ93C8==,type:str]
sops: