splunk · vivekr-splunk · Oct 15, 2024 · Oct 15, 2024 · Oct 15, 2024 · Oct 17, 2024
diff --git a/.github/workflows/int-test-workflow.yml b/.github/workflows/int-test-workflow.yml
@@ -5,6 +5,7 @@ on:
       - develop
       - main
       - feature**
+      - CSPL-2600
 jobs:
   build-operator-image:
     runs-on: ubuntu-latest

diff --git a/Makefile b/Makefile
@@ -1,5 +1,7 @@
 # Default environment is default
-ENVIRONMENT=${1:-default}
+ENVIRONMENT ?= ${1}
+$(ENVIRONMENT):
+	ENVIRONMENT = default
 
 # VERSION defines the project version for the bundle.
 # Update this value when you upgrade the version of your project.
@@ -185,20 +187,20 @@ uninstall: manifests kustomize ## Uninstall CRDs from the K8s cluster specified
 	$(KUSTOMIZE) build config/crd | kubectl delete --ignore-not-found=$(ignore-not-found) -f -
 
 deploy: manifests kustomize uninstall ## Deploy controller to the K8s cluster specified in ~/.kube/config.
-	$(SED) "s/namespace: splunk-operator/namespace: ${NAMESPACE}/g"  config/$(ENVIRONMENT)/kustomization.yaml
-	$(SED) "s/value: WATCH_NAMESPACE_VALUE/value: \"${WATCH_NAMESPACE}\"/g"  config/$(ENVIRONMENT)/kustomization.yaml
-	$(SED) "s|SPLUNK_ENTERPRISE_IMAGE|${SPLUNK_ENTERPRISE_IMAGE}|g"  config/$(ENVIRONMENT)/kustomization.yaml
+	$(SED) "s/namespace: splunk-operator/namespace: ${NAMESPACE}/g"  config/${ENVIRONMENT}/kustomization.yaml
+	$(SED) "s/value: WATCH_NAMESPACE_VALUE/value: \"${WATCH_NAMESPACE}\"/g"  config/${ENVIRONMENT}/kustomization.yaml
+	$(SED) "s|SPLUNK_ENTERPRISE_IMAGE|${SPLUNK_ENTERPRISE_IMAGE}|g"  config/${ENVIRONMENT}/kustomization.yaml
 	cd config/manager && $(KUSTOMIZE) edit set image controller=${IMG}
-	RELATED_IMAGE_SPLUNK_ENTERPRISE=${SPLUNK_ENTERPRISE_IMAGE} WATCH_NAMESPACE=${WATCH_NAMESPACE} $(KUSTOMIZE) build config/$(ENVIRONMENT) | kubectl apply --server-side --force-conflicts -f -
-	$(SED) "s/namespace: ${NAMESPACE}/namespace: splunk-operator/g"  config/$(ENVIRONMENT)/kustomization.yaml
-	$(SED) "s/value: \"${WATCH_NAMESPACE}\"/value: WATCH_NAMESPACE_VALUE/g"  config/$(ENVIRONMENT)/kustomization.yaml
-	$(SED) "s|${SPLUNK_ENTERPRISE_IMAGE}|SPLUNK_ENTERPRISE_IMAGE|g"  config/$(ENVIRONMENT)/kustomization.yaml
+	RELATED_IMAGE_SPLUNK_ENTERPRISE=${SPLUNK_ENTERPRISE_IMAGE} WATCH_NAMESPACE=${WATCH_NAMESPACE} $(KUSTOMIZE) build config/${ENVIRONMENT} | kubectl apply --server-side --force-conflicts -f -
+	$(SED) "s/namespace: ${NAMESPACE}/namespace: splunk-operator/g"  config/${ENVIRONMENT}/kustomization.yaml
+	$(SED) "s/value: \"${WATCH_NAMESPACE}\"/value: WATCH_NAMESPACE_VALUE/g"  config/${ENVIRONMENT}/kustomization.yaml
+	$(SED) "s|${SPLUNK_ENTERPRISE_IMAGE}|SPLUNK_ENTERPRISE_IMAGE|g"  config/${ENVIRONMENT}/kustomization.yaml
 
 undeploy: ## Undeploy controller from the K8s cluster specified in ~/.kube/config.
-	$(KUSTOMIZE) build config/$(ENVIRONMENT) | kubectl delete -f -
+	$(KUSTOMIZE) build config/${ENVIRONMENT} | kubectl delete -f -
 
 ## Location to install dependencies to
-LOCALBIN ?= $(shell pwd)/bin
+LOCALBIN ?= "$(shell pwd)/bin"
 $(LOCALBIN):
 	mkdir -p $(LOCALBIN)
 

diff --git a/api/v4/common_types.go b/api/v4/common_types.go
@@ -238,6 +238,8 @@ type CommonSplunkSpec struct {
 	// Sets imagePullSecrets if image is being pulled from a private registry.
 	// See https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 	ImagePullSecrets []corev1.LocalObjectReference `json:"imagePullSecrets,omitempty"`
+
+	VaultIntegration VaultIntegration `json:"vaultIntegration,omitempty"`
 }
 
 // StorageClassSpec defines storage class configuration
@@ -569,6 +571,26 @@ type PhaseInfo struct {
 	FailCount uint32 `json:"failCount,omitempty"`
 }
 
+// Vault represents the Vault configuration for enabling secret injection.
+// +kubebuilder:object:generate=true
+// +kubebuilder:validation:Optional
+type VaultIntegration struct {
+	// Enable vault support
+	Enable bool `json:"enable,omitempty"`
+
+	// Vault Address
+	Address string `json:"address"`
+
+	// Vault Role
+	Role string `json:"role"`
+
+	// Vault secret path
+	SecretPath string `json:"secretPath"`
+
+	// OperatorRole if different from the role
+	OperatorRole string `json:"operatorRole,omitempty"`
+}
+
 const (
 	// AppPkgDownloadPending indicates pending
 	AppPkgDownloadPending AppPhaseStatusType = 101

diff --git a/api/v4/zz_generated.deepcopy.go b/api/v4/zz_generated.deepcopy.go