HomeInfra/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
45c899d2bd9896190fefbf29ee0399e7940c32c8
HetznerTerra/infrastructure/addons/flux-ui/helmrelease-weave-gitops.yaml
MichaelFisher1997 45c899d2bd
All checks were successful
Deploy Cluster / Terraform (push) Successful in 39s
Details
Deploy Cluster / Ansible (push) Successful in 4m41s
Details
Configure Weave GitOps to use Doppler-managed admin credentials 
Changes:
- Enable adminUser creation but disable Helm-managed secret
- Use ExternalSecret (cluster-user-auth) from Doppler instead
- Doppler secrets: WEAVE_GITOPS_ADMIN_USERNAME and WEAVE_GITOPS_ADMIN_PASSWORD_BCRYPT_HASH
- Added cluster-user-auth to viewSecretsResourceNames for RBAC

Login credentials are now managed via Doppler and External Secrets Operator.
2026-03-24 01:01:30 +00:00

39 lines
825 B
YAML
Raw Blame History

apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: weave-gitops
namespace: flux-system
spec:
interval: 10m
targetNamespace: flux-system
chart:
spec:
chart: ./charts/gitops-server
sourceRef:
kind: GitRepository
name: weave-gitops
namespace: flux-system
install:
createNamespace: true
remediation:
retries: 3
upgrade:
remediation:
retries: 3
values:
service:
type: ClusterIP
port: 9001
adminUser:
create: true
createClusterRole: true
createSecret: false # Secret is managed by External Secret from Doppler
username: admin
rbac:
create: true
impersonationResourceNames:
- admin
viewSecretsResourceNames:
- cluster-user-auth
- oidc-auth
Reference in New Issue View Git Blame Copy Permalink