MichaelFisher1997
9d601dc77c
- Add Local Path Provisioner for storage - Add CloudNativePG operator (v1.27.0) via Flux - Create PostgreSQL cluster with B2 (Backblaze) auto-backup/restore - Update Rancher to use external PostgreSQL via CATTLE_DB_CATTLE_* env vars - Add weekly pg_dump CronJob to B2 (Sundays 2AM) - Add pre-destroy backup hook to destroy workflow - Add B2 credentials to Doppler (B2_ACCOUNT_ID, B2_APPLICATION_KEY) - Generate RANCHER_DB_PASSWORD in Doppler Backup location: HetznerTerra/rancher-backups/ Retention: 14 backups
25 lines
596 B
YAML
25 lines
596 B
YAML
apiVersion: external-secrets.io/v1
|
|
kind: ExternalSecret
|
|
metadata:
|
|
name: b2-credentials
|
|
namespace: cnpg-cluster
|
|
spec:
|
|
refreshInterval: 1h
|
|
secretStoreRef:
|
|
name: doppler-hetznerterra
|
|
kind: ClusterSecretStore
|
|
target:
|
|
name: b2-credentials
|
|
creationPolicy: Owner
|
|
template:
|
|
type: Opaque
|
|
data:
|
|
B2_ACCOUNT_ID: "{{ .B2_ACCOUNT_ID }}"
|
|
B2_APPLICATION_KEY: "{{ .B2_APPLICATION_KEY }}"
|
|
data:
|
|
- secretKey: B2_ACCOUNT_ID
|
|
remoteRef:
|
|
key: B2_ACCOUNT_ID
|
|
- secretKey: B2_APPLICATION_KEY
|
|
remoteRef:
|
|
key: B2_APPLICATION_KEY |