apiVersion: secrets-store.csi.x-k8s.io/v1alpha1 kind: SecretProviderClass metadata: name: basic-test-mount-spc spec: provider: aws secretObjects: - secretName: secret type: Opaque data: - objectName: SecretsManagerSync key: username - secretName: json-ssm type: Opaque data: - objectName: ssmUsername key: username - objectName: ssmPassword key: password - secretName: secrets-manager-json type: Opaque data: - objectName: secretsManagerUsername key: username - objectName: secretsManagerPassword key: password parameters: region: ${REGION} failoverRegion: ${FAILOVERREGION} objects: | - objectName: "ParameterStoreTest1" objectType: "ssmparameter" - objectName: "ParameterStoreTestWithLongName" objectAlias: "ParameterStoreTest2" objectType: "ssmparameter" - objectName: "ParameterStoreRotationTest" objectType: "ssmparameter" - objectName: "SecretsManagerRotationTest" objectType: "secretsmanager" - objectName: "SecretsManagerTest1" objectType: "secretsmanager" - objectName: arn:aws:secretsmanager:${REGION}:${ACCOUNT_NUMBER}:secret:SecretsManagerTest2 objectAlias: "SecretsManagerTest2" failoverObject: objectName: arn:aws:secretsmanager:${FAILOVERREGION}:${ACCOUNT_NUMBER}:secret:SecretsManagerTest2 - objectName: "SecretsManagerSync" objectType: "secretsmanager" - objectName: "jsonSsm" objectType: "ssmparameter" jmesPath: - Path: "username" ObjectAlias: "ssmUsername" - Path: "password" ObjectAlias: "ssmPassword" - objectName: "secretsManagerJson" objectType: "secretsmanager" jmesPath: - Path: "username" ObjectAlias: "secretsManagerUsername" - Path: "password" ObjectAlias: "secretsManagerPassword"