Commit Graph

22 Commits

Author SHA1 Message Date
unkinben e000c1132f feat: add branch protection
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
- add branch protection rules for docker repos
2026-06-13 14:49:17 +10:00
benvin af26cee479 Merge pull request 'Remove woodpecker module and fix branch protection dependency' (#10) from benvin/remove-woodpecker-module into main
ci/woodpecker/push/apply Pipeline was successful
Reviewed-on: #10
2026-06-12 22:34:57 +10:00
unkinben 85583a02ad Remove woodpecker module and fix branch protection dependency
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
- Remove woodpecker_repository module and provider (repos managed outside TF)
- Add removed block with destroy=false to drop state without destroying
- Add module.team to branch_protection depends_on to prevent race condition
- Add lifecycle ignore_changes for team permission (provider bug: API returns
  "none" but rejects it on write)
2026-06-12 22:26:19 +10:00
benvin 3744ecd09f Merge pull request 'feat: return to make-apply' (#8) from benvin/always-apply into main
ci/woodpecker/push/apply Pipeline failed
Reviewed-on: #8
2026-06-12 22:01:25 +10:00
benvin 353d310bc8 Merge pull request 'feat: add terraform-artifactapi repository' (#9) from feat/add-terraform-artifactapi into main
ci/woodpecker/push/apply Pipeline failed
Reviewed-on: #9
2026-06-12 21:59:45 +10:00
unkinben 571a9b2149 feat: add terraform-artifactapi repository
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
Create the Gitea repo with branch protection on master requiring
pre-commit and plan CI checks before merge.
2026-06-12 21:56:46 +10:00
unkinben dd31dc916c feat: return to make-apply
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
- always make-apply on merge to main
2026-06-12 01:10:19 +10:00
benvin 5afa850e45 Merge pull request 'Enable branch protection and Woodpecker for forgebot repos' (#7) from fix/forgebot-branch-protection into main
ci/woodpecker/push/apply Pipeline failed
Reviewed-on: #7
2026-06-12 00:47:15 +10:00
unkinben 236a94337a Enable branch protection and Woodpecker for forgebot repos
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
- Add forgebot team with unkinben and benvin members
- Enable branch protection on main for forgebot and forgebot-skills
- Team-based approval and merge whitelists
- Register both repos with Woodpecker CI
- CI status checks: pre-commit, test, build (forgebot); validate (skills)
2026-06-12 00:45:39 +10:00
benvin 6b14486e5e Merge pull request 'feat: import forgebot and container-agent repos' (#5) from feat/import-new-repos into main
ci/woodpecker/push/apply Pipeline was successful
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
Reviewed-on: #5
2026-06-12 00:35:31 +10:00
unkinben 99e2b124a6 feat: import forgebot and container-agent repos
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
2026-06-12 00:33:58 +10:00
unkinben bd60fb3669 Add forgebot and forgebot-skills repos with branch protection
- forgebot: branch protection on main with pre-commit, test, build CI checks
- forgebot-skills: branch protection on main with validate CI check
- Both repos enabled for Woodpecker CI
2026-06-12 00:32:57 +10:00
benvin e5a69ea953 Merge pull request 'feat: only run apply when plan detects changes' (#4) from feat/conditional-apply into main
ci/woodpecker/push/apply Pipeline was successful
Reviewed-on: #4
2026-06-11 23:32:01 +10:00
unkinben dc9f3cd595 fix: remove unused deploy_key variable and duplicate required_providers
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/plan Pipeline was successful
2026-06-11 23:30:23 +10:00
unkinben 883faee35c style: tofu fmt alignment
ci/woodpecker/pr/pre-commit Pipeline failed
ci/woodpecker/pr/plan Pipeline failed
2026-06-11 23:28:02 +10:00
unkinben 8e3eac286c feat: add make pre-commit target
ci/woodpecker/pr/pre-commit Pipeline failed
ci/woodpecker/pr/plan Pipeline failed
2026-06-11 23:26:29 +10:00
unkinben 6203e4d0e2 fix: add terraform.tf for pre-commit validation
ci/woodpecker/pr/pre-commit Pipeline failed
ci/woodpecker/pr/plan Pipeline failed
Required for tofu-validate and tflint to work standalone
without the terragrunt-generated backend.tf.
2026-06-11 23:25:32 +10:00
unkinben 1b127941f8 feat: add terraform-git
ci/woodpecker/pr/pre-commit Pipeline failed
ci/woodpecker/pr/plan Pipeline was successful
- add new repo
- change write -> none
2026-06-11 23:23:29 +10:00
unkinben 1a5921d9b0 feat: only run apply when plan detects changes
ci/woodpecker/pr/pre-commit Pipeline failed
ci/woodpecker/pr/plan Pipeline was successful
2026-06-11 23:21:51 +10:00
benvin 148a9f4962 Merge pull request 'feat: initial terraform-git configuration' (#1) from feat/initial-config into main
ci/woodpecker/push/apply Pipeline was successful
Reviewed-on: #1
2026-06-11 00:23:16 +10:00
unkinben c87b3ac471 feat: initial terraform-git project
Manage Gitea resources via Terraform/Terragrunt with YAML-driven config.

Resources managed:
- Organisation (unkin)
- 28 repositories with settings
- 6 teams with members
- 13 branch protection rules
- 9 Woodpecker CI repo activations
- Deploy key module (ready, no keys yet)

Config structure: config/<service>/<org>/<type>/<object>.yaml
Consul backend for state, Vault for auth tokens.
2026-06-10 23:45:41 +10:00
gitadmin a0c1f3e630 Initial commit 2026-06-10 23:39:27 +10:00