vynil/domain-incoming
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2023-07-30 20:56:08 +02:00
parent 644f8fc8a1
commit e5083c3fb2
3 changed files with 81 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
apps/woodpecker/gitea_token.tf
View File

@@ -1,12 +1,3 @@
terraform {
required_providers {
gitea = {
source = "Lerentis/gitea"
version = "0.16.0"
}
}
}
data "kubernetes_secret_v1" "gitea" { data "kubernetes_secret_v1" "gitea" {
metadata { metadata {
name = "gitea-admin-user" name = "gitea-admin-user"
@@ -21,12 +12,6 @@ data "kubernetes_ingress_v1" "gitea" {
} }
} }
provider "gitea" {
base_url = "http://gitea-http.${var.domain}-ci.svc"
username = data.kubernetes_secret_v1.gitea.data["username"]
password = data.kubernetes_secret_v1.gitea.data["password"]
}
resource "gitea_oauth2_app" "prj" { resource "gitea_oauth2_app" "prj" {
name = var.component name = var.component
redirect_uris = [ redirect_uris = [

64
apps/woodpecker/index.yaml
View File

@@ -6,10 +6,10 @@ metadata:
name: woodpecker name: woodpecker
description: null description: null
options: options:
domain: issuer:
default: your-company default: letsencrypt-prod
examples: examples:
- your-company - letsencrypt-prod
type: string type: string
images: images:
default: default:
@@ -108,6 +108,35 @@ options:
type: string type: string
type: object type: object
type: object type: object
storage-server:
default:
accessMode: ReadWriteOnce
size: 10Gi
examples:
- accessMode: ReadWriteOnce
size: 10Gi
properties:
accessMode:
default: ReadWriteOnce
enum:
- ReadWriteOnce
- ReadOnlyMany
- ReadWriteMany
type: string
size:
default: 10Gi
type: string
type: object
domain:
default: your-company
examples:
- your-company
type: string
sub-domain:
default: ci
examples:
- ci
type: string
domain-name: domain-name:
default: your_company.com default: your_company.com
examples: examples:
@@ -118,11 +147,6 @@ options:
examples: examples:
- traefik - traefik
type: string type: string
sub-domain:
default: ci
examples:
- ci
type: string
storage-agent: storage-agent:
default: default:
size: 10Gi size: 10Gi
@@ -143,30 +167,6 @@ options:
default: 'false' default: 'false'
type: string type: string
type: object type: object
storage-server:
default:
accessMode: ReadWriteOnce
size: 10Gi
examples:
- accessMode: ReadWriteOnce
size: 10Gi
properties:
accessMode:
default: ReadWriteOnce
enum:
- ReadWriteOnce
- ReadOnlyMany
- ReadWriteMany
type: string
size:
default: 10Gi
type: string
type: object
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
dependencies: [] dependencies: []
providers: providers:
kubernetes: true kubernetes: true

49
apps/woodpecker/providers.tf Normal file
View File

@@ -0,0 +1,49 @@
terraform {
required_providers {
gitea = {
source = "Lerentis/gitea"
version = "~> 0.16.0"
}
kustomization = {
source = "kbst/kustomization"
version = "~> 0.9.2"
}
kubernetes = {
source = "hashicorp/kubernetes"
version = "~> 2.20.0"
}
kubectl = {
source = "gavinbunney/kubectl"
version = "~> 1.14.0"
}
authentik = {
source = "goauthentik/authentik"
version = "~> 2023.5.0"
}
}
}
provider "gitea" {
base_url = "http://gitea-http.${var.domain}-ci.svc"
username = data.kubernetes_secret_v1.gitea.data["username"]
password = data.kubernetes_secret_v1.gitea.data["password"]
}
provider "kustomization" {
kubeconfig_incluster = true
}
provider "kubernetes" {
host = "https://kubernetes.default.svc"
token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
}
provider "kubectl" {
host = "https://kubernetes.default.svc"
token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
load_config_file = false
}
provider "authentik" {
url = "http://authentik.${var.domain}-auth.svc"
token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
}