feat: add secret name conversion (#101)

buttahtoast · Jan 24, 2024 · 908d191 · 908d191
1 parent ed77294
commit 908d191
Show file tree

Hide file tree

Showing 4 changed files with 43 additions and 18 deletions.
diff --git a/argocd-cmp/cmp.yaml b/argocd-cmp/cmp.yaml
@@ -15,10 +15,6 @@ spec:
     args:
     - render
     - "."
-    - --secret-name
-    - "${ARGOCD_APP_NAME}"
-    - --secret-namespace
-    - "${ARGOCD_APP_NAMESPACE}"
     - --env-regex
     - "^ARGOCD_ENV_.*$"
     - --must-decrypt

diff --git a/pkg/config/config.go b/pkg/config/config.go
@@ -15,18 +15,19 @@ import (
 )
 
 type Configuration struct {
-	EnvRegex        string        `mapstructure:"env-regex"`
-	RootDirectory   string        `mapstructure:"root-dir"`
-	FileRegex       string        `mapstructure:"file-regex"`
-	SecretName      string        `mapstructure:"secret-name"`
-	SecretNamespace string        `mapstructure:"secret-namespace"`
-	EjsonKey        []string      `mapstructure:"ejson-key"`
-	SkipDecrypt     bool          `mapstructure:"skip-decrypt"`
-	MustDecrypt     bool          `mapstructure:"must-decrypt"`
-	KubectlTimeout  time.Duration `mapstructure:"kubectl-timeout"`
-	Kubeconfig      string        `mapstructure:"kubeconfig"`
-	KubeAPI         string        `mapstructure:"kube-api"`
-	Output          string        `mapstructure:"output"`
+	EnvRegex          string        `mapstructure:"env-regex"`
+	RootDirectory     string        `mapstructure:"root-dir"`
+	FileRegex         string        `mapstructure:"file-regex"`
+	SecretName        string        `mapstructure:"secret-name"`
+	SecretNamespace   string        `mapstructure:"secret-namespace"`
+	EjsonKey          []string      `mapstructure:"ejson-key"`
+	SkipDecrypt       bool          `mapstructure:"skip-decrypt"`
+	MustDecrypt       bool          `mapstructure:"must-decrypt"`
+	KubectlTimeout    time.Duration `mapstructure:"kubectl-timeout"`
+	Kubeconfig        string        `mapstructure:"kubeconfig"`
+	KubeAPI           string        `mapstructure:"kube-api"`
+	Output            string        `mapstructure:"output"`
+	ConvertSecretname bool          `mapstructure:"convert-secret-name"`
 }
 
 var (
@@ -82,8 +83,17 @@ func LoadConfiguration(cfgFile string, cmd *cobra.Command, directory string) (*C
 	}
 
 	if cfg.SecretName != "" {
-		regex := regexp.MustCompile(`[^a-zA-Z0-9]+`)
-		cfg.SecretName = regex.ReplaceAllString(cfg.SecretName, "-")
+		if cfg.ConvertSecretname {
+			cfg.SecretName = getValueAfterUnderscore(cfg.SecretName)
+
+		} else {
+			regex := regexp.MustCompile(`[^a-zA-Z0-9]+`)
+			cfg.SecretName = regex.ReplaceAllString(cfg.SecretName, "-")
+		}
+	}
+
+	if cfg.SecretNamespace == "" {
+		cfg.SecretNamespace = os.Getenv("ARGOCD_APP_NAMESPACE")
 	}
 
 	if cfg.SecretName != "" && cfg.SecretNamespace == "" {

diff --git a/pkg/config/utils.go b/pkg/config/utils.go
@@ -0,0 +1,17 @@
+package config
+
+import (
+	"regexp"
+)
+
+func getValueAfterUnderscore(input string) string {
+	re, _ := regexp.Compile("_(.+)")
+
+	matches := re.FindStringSubmatch(input)
+	if len(matches) < 2 {
+		// No match found or the part after underscore is missing
+		return input
+	}
+
+	return matches[1]
+}
diff --git a/subst/cmd/render.go b/subst/cmd/render.go
@@ -38,6 +38,8 @@ func addRenderFlags(flags *flag.FlagSet) {
 	if flags.Lookup("kube-api") == nil {
 		flags.String("kube-api", "", "Kubernetes API Url")
 	}
+	flags.Bool("convert-secret-name", true, heredoc.Doc(`
+			Assuming the secret name is derived from ARGOCD_APP_NAME, this option will only use the application name (without project-name_)`))
 	flags.String("secret-name", "", heredoc.Doc(`
 	        Specify Secret name (each key within the secret will be used as a decryption key)`))
 	flags.String("secret-namespace", "", heredoc.Doc(`