peak-scale
diff --git a/‎.golangci.yml‎
Lines changed: 1 addition & 0 deletions b/‎.golangci.yml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎Makefile‎
Lines changed: 0 additions & 1 deletion b/‎Makefile‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎PROJECT‎
Lines changed: 7 additions & 0 deletions b/‎PROJECT‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎api/v1alpha1/globalsopssecret_types.go‎
Lines changed: 60 additions & 0 deletions b/‎api/v1alpha1/globalsopssecret_types.go‎
Lines changed: 60 additions & 0 deletions
diff --git a/‎api/v1alpha1/sopssecret_types.go‎
Lines changed: 6 additions & 2 deletions b/‎api/v1alpha1/sopssecret_types.go‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎api/v1alpha1/zz_generated.deepcopy.go‎
Lines changed: 106 additions & 0 deletions b/‎api/v1alpha1/zz_generated.deepcopy.go‎
Lines changed: 106 additions & 0 deletions
@@ -24,6 +24,7 @@ linters:
     - unparam
     - varnamelen
     - wrapcheck
+    - goconst
   settings:
     cyclop:
       max-complexity: 27
 
@@ -238,7 +238,6 @@ e2e-init: sops openbao
 		$(SOPS) -e secret-quorum.yaml > secret-quorum.enc.yaml';
 
 
-
 e2e-destroy: kind
 	$(KIND) delete cluster --name $(CLUSTER_NAME)
 
 
@@ -23,4 +23,11 @@ resources:
   kind: SopsSecret
   path: github.com/peak-scale/sops-operator/api/v1alpha1
   version: v1alpha1
+- api:
+    crdVersion: v1
+  domain: projectcapsule.dev
+  group: addons
+  kind: GlobalSopsSecret
+  path: github.com/peak-scale/sops-operator/api/v1alpha1
+  version: v1alpha1
 version: "3"
@@ -0,0 +1,60 @@
+/*
+Copyright 2024-2025 Peak Scale
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package v1alpha1
+
+import (
+	"github.com/peak-scale/sops-operator/internal/api"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// SopsSecretSpec defines the desired state of SopsSecret.
+type GlobalSopsSecretSpec struct {
+	// Define Secrets to replicate, when secret is decrypted
+	Secrets []*GlobalSopsSecretItem `json:"secrets"`
+}
+
+// GlobalSopsSecretItem defines the desired state of GlobalSopsSecret.
+type GlobalSopsSecretItem struct {
+	// Namespace must be declared since this is a cluster scoped resource
+	Namespace string `json:"namespace" protobuf:"bytes,1,opt,name=namespace"`
+
+	SopsSecretItem `json:",inline"`
+}
+
+func (s *GlobalSopsSecret) GetSopsMetadata() *api.Metadata {
+	return s.Sops
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+// +kubebuilder:resource:scope=Cluster
+// +kubebuilder:printcolumn:name="Secrets",type="integer",JSONPath=".status.size",description="The amount of secrets being managed"
+// +kubebuilder:printcolumn:name="Status",type="string",JSONPath=".status.condition.type",description="The actual state of the GlobalSopsSecret"
+// +kubebuilder:printcolumn:name="Message",type="string",JSONPath=".status.condition.message",description="Condition Message"
+// +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp",description="Age"
+
+// GlobalSopsSecret is the Schema for the globalsopssecrets API.
+type GlobalSopsSecret struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   GlobalSopsSecretSpec `json:"spec,omitempty"`
+	Status SopsSecretStatus     `json:"status,omitempty"`
+	Sops   *api.Metadata        `json:"sops"`
+}
+
+// +kubebuilder:object:root=true
+
+// GlobalSopsSecretList contains a list of GlobalSopsSecret.
+type GlobalSopsSecretList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []GlobalSopsSecret `json:"items"`
+}
+
+func init() {
+	SchemeBuilder.Register(&GlobalSopsSecret{}, &GlobalSopsSecretList{})
+}
@@ -66,10 +66,14 @@ type SopsSecretItem struct {
 	Immutable *bool `json:"immutable,omitempty" protobuf:"varint,5,opt,name=immutable"`
 }
 
+func (s *SopsSecret) GetSopsMetadata() *api.Metadata {
+	return s.Sops
+}
+
 // +kubebuilder:object:root=true
 // +kubebuilder:subresource:status
 // +kubebuilder:printcolumn:name="Secrets",type="integer",JSONPath=".status.size",description="The amount of secrets being managed"
-// +kubebuilder:printcolumn:name="Status",type="string",JSONPath=".status.condition.type",description="The actual state of the Tenant"
+// +kubebuilder:printcolumn:name="Status",type="string",JSONPath=".status.condition.type",description="The actual state of the SopsSecret"
 // +kubebuilder:printcolumn:name="Message",type="string",JSONPath=".status.condition.message",description="Condition Message"
 // +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp",description="Age"
 
@@ -80,7 +84,7 @@ type SopsSecret struct {
 
 	Spec   SopsSecretSpec   `json:"spec,omitempty"`
 	Status SopsSecretStatus `json:"status,omitempty"`
-	Sops   *api.Metadata    `json:"sops,omitempty"`
+	Sops   *api.Metadata    `json:"sops"`
 }
 
 // +kubebuilder:object:root=true