48 lines
1.1 KiB
HCL
48 lines
1.1 KiB
HCL
terraform {
|
|
required_providers {
|
|
gitea = {
|
|
source = "Lerentis/gitea"
|
|
version = "0.16.0"
|
|
}
|
|
}
|
|
}
|
|
|
|
data "kubernetes_secret_v1" "gitea" {
|
|
metadata {
|
|
name = "gitea-admin-user"
|
|
namespace = "${var.domain}-ci"
|
|
}
|
|
}
|
|
|
|
data "kubernetes_ingress_v1" "gitea" {
|
|
metadata {
|
|
name = "gitea"
|
|
namespace = "${var.domain}-ci"
|
|
}
|
|
}
|
|
|
|
provider "gitea" {
|
|
base_url = "http://gitea-http.${var.domain}-ci.svc"
|
|
username = data.kubernetes_secret_v1.gitea.data["username"]
|
|
password = data.kubernetes_secret_v1.gitea.data["password"]
|
|
}
|
|
|
|
resource "gitea_oauth2_app" "prj" {
|
|
name = var.component
|
|
redirect_uris = [
|
|
"https://${var.sub-domain}.${var.domain-name}/authorize"
|
|
]
|
|
}
|
|
|
|
resource "kubernetes_secret_v1" "oauth2-client-gitea" {
|
|
metadata {
|
|
name = "${var.component}-${var.instance}-gitea"
|
|
namespace = var.namespace
|
|
}
|
|
data = {
|
|
"WOODPECKER_GITEA_URL" = "https://${data.kubernetes_ingress_v1.gitea.spec[0].rule[0].host}"
|
|
"WOODPECKER_GITEA_CLIENT" = gitea_oauth2_app.prj.client_id
|
|
"WOODPECKER_GITEA_SECRET" = gitea_oauth2_app.prj.client_secret
|
|
}
|
|
}
|