blumeops/argocd/manifests/paperless-ringtail/external-secret.yaml

---
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
  name: paperless-secrets
  namespace: paperless
spec:
  refreshInterval: 1h
  secretStoreRef:
    kind: ClusterSecretStore
    name: onepassword-blumeops
  target:
    name: paperless-secrets
    creationPolicy: Owner
  data:
    - secretKey: db-password
      remoteRef:
        key: "Paperless (blumeops)"
        property: postgresql-password
    - secretKey: secret-key
      remoteRef:
        key: "Paperless (blumeops)"
        property: secret-key
    - secretKey: admin-password
      remoteRef:
        key: "Paperless (blumeops)"
        property: admin-password
    - secretKey: socialaccount-providers
      remoteRef:
        key: "Paperless (blumeops)"
        property: socialaccount-providers