mirror of
https://github.com/auricom/home-cluster.git
synced 2025-09-17 18:24:14 +02:00
🚀 tf-controller
This commit is contained in:
auricom
@@ -0,0 +1,7 @@
|
||||
---
|
||||
# yaml-language-server: $schema=https://json.schemastore.org/kustomization
|
||||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
resources:
|
||||
- ./ocirepository.yaml
|
||||
#- ./terraform.yaml
|
||||
@@ -0,0 +1,12 @@
|
||||
---
|
||||
# yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/source.toolkit.fluxcd.io/ocirepository_v1beta2.json
|
||||
apiVersion: source.toolkit.fluxcd.io/v1beta2
|
||||
kind: OCIRepository
|
||||
metadata:
|
||||
name: terraform
|
||||
namespace: flux-system
|
||||
spec:
|
||||
interval: 1m
|
||||
url: oci://ghcr.io/auricom/manifests/terraform
|
||||
ref:
|
||||
tag: main
|
||||
@@ -0,0 +1,37 @@
|
||||
# yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/infra.contrib.fluxcd.io/terraform_v1alpha2.json
|
||||
apiVersion: infra.contrib.fluxcd.io/v1alpha2
|
||||
kind: Terraform
|
||||
metadata:
|
||||
name: storage-apps
|
||||
namespace: flux-system
|
||||
spec:
|
||||
suspend: false
|
||||
approvePlan: auto
|
||||
interval: 12h
|
||||
path: ./storage/apps
|
||||
sourceRef:
|
||||
kind: OCIRepository
|
||||
name: terraform
|
||||
namespace: flux-system
|
||||
backendConfig:
|
||||
disable: true
|
||||
cliConfigSecretRef:
|
||||
name: tf-controller-tfrc-secret
|
||||
runnerPodTemplate:
|
||||
spec:
|
||||
env:
|
||||
- name: OP_CONNECT_HOST
|
||||
value: http://onepassword-connect.kube-system.svc.cluster.local:8080
|
||||
- name: OP_CONNECT_TOKEN
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: tf-controller-op-secret
|
||||
key: OP_CONNECT_TOKEN
|
||||
volumeMounts:
|
||||
- name: sops
|
||||
mountPath: /home/runner/.config/sops/age/keys.txt
|
||||
subPath: keys.txt
|
||||
volumes:
|
||||
- name: sops
|
||||
secret:
|
||||
secretName: tf-controller-sops-secret
|
||||
Reference in New Issue
Block a user