terraform {
  required_providers {
    gitea = {
      source = "Lerentis/gitea"
      version = "~> 0.16.0"
    }
    kustomization = {
        source  = "kbst/kustomization"
        version = "~> 0.9.2"
    }
    kubernetes = {
        source = "hashicorp/kubernetes"
        version = "~> 2.20.0"
    }
    kubectl = {
        source = "gavinbunney/kubectl"
        version = "~> 1.14.0"
    }
    authentik = {
        source = "goauthentik/authentik"
        version = "~> 2023.5.0"
    }
  }
}

provider "gitea" {
  base_url = "http://gitea-http.${var.domain}-ci.svc:3000/"
  username = data.kubernetes_secret_v1.gitea.data["username"]
  password = data.kubernetes_secret_v1.gitea.data["password"]
}
provider "kustomization" {
    kubeconfig_incluster = true
}
provider "kubernetes" {
    host = "https://kubernetes.default.svc"
    token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
    cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
}
provider "kubectl" {
    host = "https://kubernetes.default.svc"
    token = "${file("/run/secrets/kubernetes.io/serviceaccount/token")}"
    cluster_ca_certificate = "${file("/run/secrets/kubernetes.io/serviceaccount/ca.crt")}"
    load_config_file       = false
}
provider "authentik" {
  url   = "http://authentik.${var.domain}-auth.svc"
  token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
}