This commit is contained in:
Simen Røstvik 2022-12-15 14:22:45 +01:00
parent 57fbdaf872
commit a44d5f666d
No known key found for this signature in database
4 changed files with 61 additions and 3 deletions

View File

@ -33,9 +33,7 @@ spec:
value: "https://git.roxedus.dev/api/v1" value: "https://git.roxedus.dev/api/v1"
envFrom: envFrom:
- secretRef: - secretRef:
name: renovate-pat name: renovate-secret
- secretRef:
name: renovate-gh
volumeMounts: volumeMounts:
- name: work-volume - name: work-volume
mountPath: /tmp/renovate/ mountPath: /tmp/renovate/

View File

@ -0,0 +1,36 @@
apiVersion: external-secrets.io/v1alpha1
kind: SecretStore
metadata:
name: ext-renovate-backend
namespace: ci
spec:
provider:
vault:
server: "http://vault.vault:8200"
path: "kv"
version: "v2"
auth:
kubernetes:
mountPath: "kubernetes"
role: "kube-role"
---
apiVersion: external-secrets.io/v1alpha1
kind: ExternalSecret
metadata:
name: ext-renovate
namespace: ci
spec:
secretStoreRef:
name: ext-renovate-backend
kind: SecretStore
target:
name: renovate-secret
data:
- secretKey: GITHUB_COM_TOKEN
remoteRef:
key: ci/renovate
property: github
- secretKey: RENOVATE_TOKEN
remoteRef:
key: ci/renovate
property: token

View File

@ -0,0 +1,24 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: ci
namespace: argo-cd
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
destination:
server: https://kubernetes.default.svc
namespace: ci
project: default
source:
path: CI/
repoURL: https://git.roxedus.dev/Roxedus/Argo.git
targetRevision: HEAD
directory:
recurse: true
syncPolicy:
automated:
prune: true
selfHeal: true
syncOptions:
- CreateNamespace=true