From db06db1fee8de4e4130c7cf89bbe057574a52406 Mon Sep 17 00:00:00 2001
From: Morten Olsen <fbtijfdq@void.black>
Date: Thu, 18 Dec 2025 09:35:01 +0100
Subject: [PATCH] add sealed secrets

---
 foundation/charts/secrets/Chart.yaml          |  3 +++
 .../charts/secrets/templates/reloader.yaml    | 25 +++++++++++++++++++
 foundation/charts/secrets/values.yaml         |  2 ++
 3 files changed, 30 insertions(+)
 create mode 100644 foundation/charts/secrets/Chart.yaml
 create mode 100644 foundation/charts/secrets/templates/reloader.yaml
 create mode 100644 foundation/charts/secrets/values.yaml

diff --git a/foundation/charts/secrets/Chart.yaml b/foundation/charts/secrets/Chart.yaml
new file mode 100644
index 0000000..2abce17
--- /dev/null
+++ b/foundation/charts/secrets/Chart.yaml
@@ -0,0 +1,3 @@
+apiVersion: v2
+version: 1.0.0
+name: certs
diff --git a/foundation/charts/secrets/templates/reloader.yaml b/foundation/charts/secrets/templates/reloader.yaml
new file mode 100644
index 0000000..559ff4b
--- /dev/null
+++ b/foundation/charts/secrets/templates/reloader.yaml
@@ -0,0 +1,25 @@
+---
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: sealed-secrets-operator
+  namespace: argocd
+  finalizers:
+    - resources-finalizer.argocd.argoproj.io
+spec:
+  destination:
+    namespace: foundation
+    server: https://kubernetes.default.svc
+  project: foundation
+  source:
+    repoURL: https://bitnami-labs.github.io/sealed-secrets
+    targetRevision: 2.17.9
+    chart: sealed-secrets
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true
+    syncOptions:
+      - ServerSideApply=true
+      - ApplyOutOfSyncOnly=true
+      - CreateNamespace=true
diff --git a/foundation/charts/secrets/values.yaml b/foundation/charts/secrets/values.yaml
new file mode 100644
index 0000000..41abe5a
--- /dev/null
+++ b/foundation/charts/secrets/values.yaml
@@ -0,0 +1,2 @@
+globals:
+  timezone: Europe/Amsterdam
\ No newline at end of file