feat(chart): add support for specifying BW_APPID

.github/workflows/ci-helm-lint-test.yml

@@ -55,6 +55,7 @@ jobs:
         run: |
           ct install --target-branch ${{ github.event.repository.default_branch }} \
             --helm-extra-set-args="--set=bitwarden_eso_provider.create_cluster_secret_store=false \
+            --set=bitwarden_eso_provider.auth.appID=${{ secrets.BOT_APP_ID }} \
             --set=bitwarden_eso_provider.auth.password=${{ secrets.BOT_PASSWORD }} \
             --set=bitwarden_eso_provider.auth.clientID=${{ secrets.BOT_CLIENT_ID }} \
-            --set=bitwarden_eso_provider.auth.clientSecret=${{ secrets.BOT_CLIENT_SECRET }}"
+            --set=bitwarden_eso_provider.auth.clientSecret=${{ secrets.BOT_CLIENT_SECRET }}"

charts/bitwarden-eso-provider/Chart.yaml

@@ -15,7 +15,7 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.5.2
+version: 0.5.3
 
 # renovate: image=jessebot/bweso
 appVersion: "v0.4.0"

charts/bitwarden-eso-provider/README.md

@@ -1,6 +1,6 @@
 # bitwarden-eso-provider
 
-![Version: 0.5.2](https://img.shields.io/badge/Version-0.5.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v0.4.0](https://img.shields.io/badge/AppVersion-v0.4.0-informational?style=flat-square)
+![Version: 0.5.3](https://img.shields.io/badge/Version-0.5.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v0.4.0](https://img.shields.io/badge/AppVersion-v0.4.0-informational?style=flat-square)
 
 Helm chart to use Bitwarden as a Provider for External Secrets Operator
 
@@ -20,11 +20,13 @@ Helm chart to use Bitwarden as a Provider for External Secrets Operator
 | autoscaling.maxReplicas | int | `100` | max number of pods to spin up |
 | autoscaling.minReplicas | int | `1` | minimum number of pods to keep |
 | autoscaling.targetCPUUtilizationPercentage | int | `80` |  |
+| bitwarden_eso_provider.auth.appID | string | `""` | optional bitwarden app ID to identify your pod to the Bitwarden server so that you don't receieve infinite email notifications every login |
 | bitwarden_eso_provider.auth.clientID | string | `""` | bitwarden client ID to use to grabs secrets in the pod, ignored if existingSecret is set |
 | bitwarden_eso_provider.auth.clientSecret | string | `""` | bitwarden client Secret to use to grabs secrets in the pod, ignored if existingSecret is set |
 | bitwarden_eso_provider.auth.existingSecret | string | `""` | use an existing secret for bitwarden credentials, ignores above credentials if this is set |
 | bitwarden_eso_provider.auth.host | string | `"https://bitwarden.com"` | bitwarden hostname to use to grab secrets in the pod, ignored if existingSecret is set |
 | bitwarden_eso_provider.auth.password | string | `""` | password for bitwarden |
+| bitwarden_eso_provider.auth.secretKeys.appID | string | `"BW_APPID"` | secret key for bitwarden app ID to use to identify the pod to bitwarden |
 | bitwarden_eso_provider.auth.secretKeys.clientID | string | `"BW_CLIENTID"` | secret key for bitwarden client ID to use to grabs secrets in the pod |
 | bitwarden_eso_provider.auth.secretKeys.clientSecret | string | `"BW_CLIENTSECRET"` | secret key for bitwarden client Secret to use to grabs secrets in the pod |
 | bitwarden_eso_provider.auth.secretKeys.host | string | `"BW_HOST"` | secret key for bitwarden hostname to use to grab secrets in the pod |

charts/bitwarden-eso-provider/templates/credentials.yaml

@@ -10,4 +10,5 @@ data:
   BW_PASSWORD: {{ .Values.bitwarden_eso_provider.auth.password | b64enc | quote}}
   BW_CLIENTID: {{ .Values.bitwarden_eso_provider.auth.clientID | b64enc | quote}}
   BW_CLIENTSECRET: {{ .Values.bitwarden_eso_provider.auth.clientSecret | b64enc | quote}}
+  BW_APPID: {{ .Values.bitwarden_eso_provider.auth.appID | b64enc | quote }}
 {{- end }}

charts/bitwarden-eso-provider/templates/deployment.yaml

@@ -55,6 +55,11 @@ spec:
                 secretKeyRef:
                   name: "{{ .Values.bitwarden_eso_provider.auth.existingSecret | default .Release.Name }}"
                   key: {{ .Values.bitwarden_eso_provider.auth.secretKeys.password }}
+            - name: BW_APPID
+              valueFrom:
+                secretKeyRef:
+                  name: "{{ .Values.bitwarden_eso_provider.auth.existingSecret | default .Release.Name }}"
+                  key: {{ .Values.bitwarden_eso_provider.auth.secretKeys.appID }}
           ports:
             - name: http
               containerPort: {{ .Values.service.targetPort }}

charts/bitwarden-eso-provider/values.yaml

@@ -29,6 +29,8 @@ bitwarden_eso_provider:
     clientSecret: ""
     # -- bitwarden client ID to use to grabs secrets in the pod, ignored if existingSecret is set
     clientID: ""
+    # -- optional bitwarden app ID to identify your pod to the Bitwarden server so that you don't receieve infinite email notifications every login
+    appID: ""
     # -- bitwarden hostname to use to grab secrets in the pod, ignored if existingSecret is set
     host: "https://bitwarden.com"
     # -- use an existing secret for bitwarden credentials, ignores above credentials if this is set
@@ -42,6 +44,8 @@ bitwarden_eso_provider:
       clientID: "BW_CLIENTID"
       # -- secret key for bitwarden hostname to use to grab secrets in the pod
       host: "BW_HOST"
+      # -- secret key for bitwarden app ID to use to identify the pod to bitwarden
+      appID: "BW_APPID"
 
 serviceAccount:
   # -- Specifies whether a service account should be created