50 lines
1.4 KiB
HCL
50 lines
1.4 KiB
HCL
|
|
terraform {
|
|
required_providers {
|
|
gitea = {
|
|
source = "Lerentis/gitea"
|
|
version = "~> 0.16.0"
|
|
}
|
|
kustomization = {
|
|
source = "kbst/kustomization"
|
|
version = "~> 0.9.2"
|
|
}
|
|
kubernetes = {
|
|
source = "hashicorp/kubernetes"
|
|
version = "~> 2.20.0"
|
|
}
|
|
kubectl = {
|
|
source = "gavinbunney/kubectl"
|
|
version = "~> 1.14.0"
|
|
}
|
|
authentik = {
|
|
source = "goauthentik/authentik"
|
|
version = "~> 2023.5.0"
|
|
}
|
|
}
|
|
}
|
|
|
|
provider "gitea" {
|
|
base_url = "http://gitea-http.${var.domain}-ci.svc"
|
|
username = data.kubernetes_secret_v1.gitea.data["username"]
|
|
password = data.kubernetes_secret_v1.gitea.data["password"]
|
|
}
|
|
provider "kustomization" {
|
|
kubeconfig_incluster = true
|
|
}
|
|
provider "kubernetes" {
|
|
host = "https://kubernetes.default.svc"
|
|
token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
|
|
cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
|
|
}
|
|
provider "kubectl" {
|
|
host = "https://kubernetes.default.svc"
|
|
token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
|
|
cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
|
|
load_config_file = false
|
|
}
|
|
provider "authentik" {
|
|
url = "http://authentik.${var.domain}-auth.svc"
|
|
token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
|
|
}
|