fixed invalid certificate format

Author: harshit-splunk

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-logging/templates/secret.yaml

@@ -9,17 +9,20 @@ metadata:
  release: {{ .Release.Name }}
  heritage: {{ .Release.Service }}
 type: Opaque
-data:
+stringData:
  {{- with or .Values.splunk.hec.token .Values.global.splunk.hec.token }}
- splunk_hec_token: {{  . | b64enc }}
+ splunk_hec_token: {{ . }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientCert .Values.global.splunk.hec.clientCert }}
- hec_client_cert: {{ . | b64enc }}
+ hec_client_cert: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientKey .Values.global.splunk.hec.clientKey }}
- hec_client_key: {{ . | b64enc }}
+ hec_client_key: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.caFile .Values.global.splunk.hec.caFile }}
- hec_ca_file: {{ . | b64enc }}
+ hec_ca_file: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
 {{- end -}}

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-logging/values.yaml

@@ -77,6 +77,12 @@ splunk:
  # The PEM-format CA certificate for this client.
  # NOTE: The content of the certificate itself should be used here, not the file path.
  # The certificate will be stored as a secret in kubernetes.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The private key for this client.
  # NOTE: The content of the key itself should be used here, not the file path.

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-metrics/templates/secret.yaml

@@ -9,17 +9,20 @@ metadata:
  release: {{ .Release.Name }}
  heritage: {{ .Release.Service }}
 type: Opaque
-data:
+stringData:
  {{- with or .Values.splunk.hec.token .Values.global.splunk.hec.token }}
- splunk_hec_token: {{ . | b64enc }}
+ splunk_hec_token: {{ . }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientCert .Values.global.splunk.hec.clientCert }}
- hec_client_cert: {{ . | b64enc }}
+ hec_client_cert: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientKey .Values.global.splunk.hec.clientKey }}
- hec_client_key: {{ . | b64enc }}
+ hec_client_key: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.caFile .Values.global.splunk.hec.caFile }}
- hec_ca_file: {{ . | b64enc }}
+ hec_ca_file: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
 {{- end -}}

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-metrics/values.yaml

@@ -62,6 +62,12 @@ splunk:
  # The PEM-format CA certificate for this client.
  # NOTE: The content of the certificate itself should be used here, not the file path.
  # The certificate will be stored as a secret in kubernetes.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The private key for this client.
  # NOTE: The content of the key itself should be used here, not the file path.
@@ -202,6 +208,12 @@ kubernetes:
  # if insecureSSL is set to true, insecure HTTPS API call is allowed, default false
  insecureSSL: false
  # Path to the CA file.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  caFile:
  # Path to the file contains the API token. By default it reads from the file "token" in the `secret_dir`.
  bearerTokenFile:

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-objects/templates/secret.yaml

@@ -9,26 +9,32 @@ metadata:
  release: {{ .Release.Name }}
  heritage: {{ .Release.Service }}
 type: Opaque
-data:
+stringData:
  {{- with or .Values.splunk.hec.token .Values.global.splunk.hec.token }}
- splunk_hec_token: {{ . | b64enc }}
+ splunk_hec_token: {{ . }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientCert .Values.global.splunk.hec.clientCert }}
- hec_client_cert: {{ . | b64enc }}
+ hec_client_cert: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.clientKey .Values.global.splunk.hec.clientKey }}
- hec_client_key: {{ . | b64enc }}
+ hec_client_key: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with or .Values.splunk.hec.caFile .Values.global.splunk.hec.caFile }}
- hec_ca_file: {{ . | b64enc }}
+ hec_ca_file: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with .Values.kubernetes.clientCert }}
- k8s_client_cert: {{ . | b64enc }}
+ k8s_client_cert: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with .Values.kubernetes.clientKey }}
- k8s_client_key: {{ . | b64enc }}
+ k8s_client_key: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
  {{- with .Values.kubernetes.caFile }}
- k8s_ca_file: {{ . | b64enc }}
+ k8s_ca_file: |-
+ {{ toYaml . | trimPrefix "|-" | trimPrefix "|" | trim | indent 2 }}
  {{- end }}
 {{- end -}}

helm-chart/splunk-connect-for-kubernetes/charts/splunk-kubernetes-objects/values.yaml

@@ -53,6 +53,12 @@ kubernetes:
  # if insecureSSL is set to true, insecure HTTPS API call is allowed, default false
  insecureSSL: false
  # Path to the certificate file for this client.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # Path to the private key file for this client.
  clientKey:
@@ -157,6 +163,12 @@ splunk:
  # insecureSSL is a boolean, it indicates should it allow insecure SSL connection (when protocol is "https"). Default value: false.
  insecureSSL:
  # The *content* of a PEM-format CA certificate for this client.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The *content* of the private key for this client.
  clientKey:

helm-chart/splunk-connect-for-kubernetes/values.yaml

@@ -29,6 +29,12 @@ global:
  # The PEM-format CA certificate for this client.
  # NOTE: The content of the certificate itself should be used here, not the file path.
  # The certificate will be stored as a secret in kubernetes.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The private key for this client.
  # NOTE: The content of the key itself should be used here, not the file path.
@@ -175,6 +181,12 @@ splunk-kubernetes-logging:
  # The PEM-format CA certificate for this client.
  # NOTE: The content of the certificate itself should be used here, not the file path.
  # The certificate will be stored as a secret in kubernetes.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The private key for this client.
  # NOTE: The content of the key itself should be used here, not the file path.
@@ -570,6 +582,12 @@ splunk-kubernetes-objects:
  # if insecureSSL is set to true, insecure HTTPS API call is allowed, default false
  insecureSSL: false
  # Path to the certificate file for this client.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # Path to the private key file for this client.
  clientKey:
@@ -676,6 +694,12 @@ splunk-kubernetes-objects:
  # For a self signed certificate this value should be true
  insecureSSL:
  # The *content* of a PEM-format CA certificate for this client.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The *content* of the private key for this client.
  clientKey:
@@ -882,6 +906,12 @@ splunk-kubernetes-metrics:
  # The PEM-format CA certificate for this client.
  # NOTE: The content of the certificate itself should be used here, not the file path.
  # The certificate will be stored as a secret in kubernetes.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  clientCert:
  # The private key for this client.
  # NOTE: The content of the key itself should be used here, not the file path.
@@ -1023,6 +1053,12 @@ splunk-kubernetes-metrics:
  # if insecureSSL is set to true, insecure HTTPS API call is allowed, default false
  insecureSSL: false
  # Path to the CA file.
+ # Make sure you are providing the certificate as multiline string (use `|-`)
+ # Example: 
+ # caFile: |-
+ # -----BEGIN CERTIFICATE-----
+ # ...
+ # -----END CERTIFICATE-----
  caFile:
  # Path to the file contains the API token. By default it reads from the file "token" in the `secret_dir`.
  bearerTokenFile: