Compare commits
5 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
| 9d4739505d | |||
| 15225433e9 | |||
| bbb9acba36 | |||
| 48f32a044d | |||
| 7f1444fb38 |
@@ -35,7 +35,7 @@ spec:
|
||||
mountPath: /combined-certs
|
||||
containers:
|
||||
- name: api
|
||||
image: git.unkin.net/unkin/artifactapi:v3.6.5
|
||||
image: git.unkin.net/unkin/artifactapi:v3.7.3
|
||||
imagePullPolicy: IfNotPresent
|
||||
ports:
|
||||
- containerPort: 8000
|
||||
@@ -48,10 +48,25 @@ spec:
|
||||
- secretRef:
|
||||
name: environment
|
||||
optional: false
|
||||
env:
|
||||
# Terraform provider registry signing. The secret is mounted
|
||||
# optional, so the pod runs before it exists; artifactapi keeps the
|
||||
# registry disabled until a readable key is present.
|
||||
- name: TF_SIGNING_KEY_PATH
|
||||
value: /etc/artifactapi/tf-signing/private-key.asc
|
||||
- name: TF_SIGNING_KEY_PASSPHRASE
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: artifactapi-tf-signing
|
||||
key: passphrase
|
||||
optional: true
|
||||
volumeMounts:
|
||||
- name: combined-certs
|
||||
mountPath: /etc/ssl/combined
|
||||
readOnly: true
|
||||
- name: tf-signing-key
|
||||
mountPath: /etc/artifactapi/tf-signing
|
||||
readOnly: true
|
||||
livenessProbe:
|
||||
failureThreshold: 3
|
||||
httpGet:
|
||||
@@ -88,4 +103,8 @@ spec:
|
||||
path: ca.crt
|
||||
- name: combined-certs
|
||||
emptyDir: {}
|
||||
- name: tf-signing-key
|
||||
secret:
|
||||
secretName: artifactapi-tf-signing
|
||||
optional: true
|
||||
restartPolicy: Always
|
||||
|
||||
@@ -22,7 +22,7 @@ spec:
|
||||
automountServiceAccountToken: true
|
||||
containers:
|
||||
- name: ui
|
||||
image: git.unkin.net/unkin/artifactapi-ui:v3.6.5
|
||||
image: git.unkin.net/unkin/artifactapi-ui:v3.7.3
|
||||
imagePullPolicy: IfNotPresent
|
||||
ports:
|
||||
- containerPort: 80
|
||||
|
||||
@@ -1,5 +1,5 @@
|
||||
---
|
||||
apiVersion: gateway.networking.k8s.io/v1alpha2
|
||||
apiVersion: gateway.networking.k8s.io/v1
|
||||
kind: TLSRoute
|
||||
metadata:
|
||||
name: authentik-ldaps
|
||||
|
||||
@@ -9,6 +9,9 @@ resources:
|
||||
- serviceaccount_terraform_artifactapi.yaml
|
||||
- serviceaccount_terraform_authentik.yaml
|
||||
- serviceaccount_terraform_git.yaml
|
||||
- serviceaccount_terraform_prowlarr.yaml
|
||||
- serviceaccount_terraform_radarr.yaml
|
||||
- serviceaccount_terraform_sonarr.yaml
|
||||
- serviceaccount_terraform_vault.yaml
|
||||
- vaultauth.yaml
|
||||
- vaultstaticsecret.yaml
|
||||
|
||||
@@ -0,0 +1,6 @@
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ServiceAccount
|
||||
metadata:
|
||||
name: terraform-prowlarr
|
||||
namespace: woodpecker
|
||||
@@ -0,0 +1,6 @@
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ServiceAccount
|
||||
metadata:
|
||||
name: terraform-radarr
|
||||
namespace: woodpecker
|
||||
@@ -0,0 +1,6 @@
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ServiceAccount
|
||||
metadata:
|
||||
name: terraform-sonarr
|
||||
namespace: woodpecker
|
||||
Reference in New Issue
Block a user