vynil/domain-incoming
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2023-07-27 08:04:00 +02:00
parent d59d177ba8
commit 20433af04f
4 changed files with 104 additions and 74 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
apps/code-server/deploy.tf
View File

@@ -38,8 +38,15 @@ resource "kubectl_manifest" "deploy" {
privileged: true
procMount: unmasked
env:
- name: USER
- name: DOCKER_PASSWORD
valueFrom:
secretKeyRef:
key: password
name: "${var.component}-${var.instance}"
- name: DOCKER_USER
value: coder
- name: IS_CONSOLE
value: "${var.no-editor?"shellinabox":"code-server"}"
- name: TZ
value: "${var.timezone}"
- name: ENTRYPOINTD

1
apps/code-server/forward.tf
View File

@@ -14,7 +14,6 @@ locals {
access-token-validity = "hours=10" // ;minutes=10
}
data "authentik_flow" "default-authorization-flow" {
depends_on = [authentik_group.prj_users]
slug = "default-provider-authorization-implicit-consent"

149
apps/code-server/index.yaml
View File

@@ -6,78 +6,6 @@ metadata:
name: code-server
description: null
options:
sub-domain:
default: code
examples:
- code
type: string
timezone:
default: Europe/Paris
examples:
- Europe/Paris
type: string
storage:
default:
accessMode: ReadWriteOnce
size: 20Gi
type: Filesystem
examples:
- accessMode: ReadWriteOnce
size: 20Gi
type: Filesystem
properties:
accessMode:
default: ReadWriteOnce
enum:
- ReadWriteOnce
- ReadOnlyMany
- ReadWriteMany
type: string
size:
default: 20Gi
type: string
type:
default: Filesystem
enum:
- Filesystem
- block
type: string
type: object
ingress-class:
default: traefik
examples:
- traefik
type: string
admin:
default:
cluster: false
namespace: false
examples:
- cluster: false
namespace: false
properties:
cluster:
default: false
type: boolean
namespace:
default: false
type: boolean
type: object
domain:
default: your-company
examples:
- your-company
type: string
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
images:
default:
codeserver:
@@ -117,6 +45,83 @@ options:
type: number
type: object
type: object
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
no-editor:
default: false
examples:
- false
type: boolean
admin:
default:
cluster: false
namespace: false
examples:
- cluster: false
namespace: false
properties:
cluster:
default: false
type: boolean
namespace:
default: false
type: boolean
type: object
storage:
default:
accessMode: ReadWriteOnce
size: 20Gi
type: Filesystem
examples:
- accessMode: ReadWriteOnce
size: 20Gi
type: Filesystem
properties:
accessMode:
default: ReadWriteOnce
enum:
- ReadWriteOnce
- ReadOnlyMany
- ReadWriteMany
type: string
size:
default: 20Gi
type: string
type:
default: Filesystem
enum:
- Filesystem
- block
type: string
type: object
sub-domain:
default: code
examples:
- code
type: string
ingress-class:
default: traefik
examples:
- traefik
type: string
timezone:
default: Europe/Paris
examples:
- Europe/Paris
type: string
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
domain:
default: your-company
examples:
- your-company
type: string
dependencies:
- dist: null
category: share

19
apps/code-server/secret.tf Normal file
View File

@@ -0,0 +1,19 @@
resource "kubectl_manifest" "gitea_secret" {
ignore_fields = ["metadata.annotations"]
yaml_body = <<-EOF
apiVersion: "secretgenerator.mittwald.de/v1alpha1"
kind: "StringSecret"
metadata:
name: "${var.component}-${var.instance}"
namespace: "${var.namespace}"
labels: ${jsonencode(local.common-labels)}
spec:
forceRegenerate: false
data:
username: "coder"
fields:
- fieldName: "password"
length: "16"
EOF
}