fix
This commit is contained in:
@@ -55,54 +55,3 @@ resource "kubectl_manifest" "post_install_job_taiga" {
|
|||||||
type: RuntimeDefault
|
type: RuntimeDefault
|
||||||
EOF
|
EOF
|
||||||
}
|
}
|
||||||
resource "kubectl_manifest" "post_install_job_sonar" {
|
|
||||||
count = var.conditions.have_gitea && var.conditions.have_sonar ? 0:0
|
|
||||||
yaml_body = <<-EOF
|
|
||||||
apiVersion: batch/v1
|
|
||||||
kind: Job
|
|
||||||
metadata:
|
|
||||||
name: "${var.instance}-${var.component}-post-config-sonar"
|
|
||||||
namespace: "${var.domain}-ci"
|
|
||||||
labels: ${jsonencode(local.common_labels)}
|
|
||||||
ownerReferences: ${jsonencode(var.install_owner)}
|
|
||||||
spec:
|
|
||||||
template:
|
|
||||||
spec:
|
|
||||||
restartPolicy: OnFailure
|
|
||||||
initContainers:
|
|
||||||
- name: wait-for-sonar
|
|
||||||
image: "${var.images.kubectl.registry}/${var.images.kubectl.repository}:${var.images.kubectl.tag}"
|
|
||||||
imagePullPolicy: ${var.images.kubectl.pull_policy}
|
|
||||||
securityContext:
|
|
||||||
allowPrivilegeEscalation: false
|
|
||||||
capabilities:
|
|
||||||
drop: ["ALL"]
|
|
||||||
runAsGroup: 0
|
|
||||||
runAsNonRoot: true
|
|
||||||
runAsUser: 1000
|
|
||||||
seccompProfile:
|
|
||||||
type: RuntimeDefault
|
|
||||||
command: ["/bin/bash", "-c"]
|
|
||||||
args: ["set -o pipefail;for i in {1..200};do (echo > /dev/tcp/sonar-sonar/80) && exit 0; sleep 2;done; exit 1"]
|
|
||||||
containers:
|
|
||||||
- name: post-config
|
|
||||||
image: "${var.images.kubectl.registry}/${var.images.kubectl.repository}:${var.images.kubectl.tag}"
|
|
||||||
imagePullPolicy: ${var.images.kubectl.pull_policy}
|
|
||||||
command: ["/bin/bash", "-c"]
|
|
||||||
args:
|
|
||||||
- >-
|
|
||||||
curl -o /dev/null -s -w "%%{http_code}\n" -u admin:admin -X POST "http://${module.service.name}.${var.namespace}.svc/api/users/change_password?login=admin&previousPassword=admin&password=$ADMIN_PASSWORD"
|
|
||||||
envFrom:
|
|
||||||
- secretRef:
|
|
||||||
name: ${kubectl_manifest.secret.name}
|
|
||||||
securityContext:
|
|
||||||
allowPrivilegeEscalation: false
|
|
||||||
capabilities:
|
|
||||||
drop: ["ALL"]
|
|
||||||
runAsGroup: 1000
|
|
||||||
runAsNonRoot: true
|
|
||||||
runAsUser: 1000
|
|
||||||
seccompProfile:
|
|
||||||
type: RuntimeDefault
|
|
||||||
EOF
|
|
||||||
}
|
|
||||||
|
|||||||
Reference in New Issue
Block a user