OpenStaticFish/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: keep microservices doppler token out of gitea
Deploy Cluster / Terraform (push) Waiting to run
Details
Deploy Cluster / Ansible (push) Blocked by required conditions
Details

Browse Source
This commit is contained in:
MichaelFisher1997
2026-05-05 04:06:19 +00:00
parent 8e4060aa5a
commit 2cf2005100
2 changed files with 0 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ansible/roles/doppler-bootstrap/tasks/main.yml
-14
View File
@@ -12,12 +12,6 @@
- ghcr_read_token | default("") | length > 0
fail_msg: ghcr_username and ghcr_read_token must be provided for private MicroServices image pulls.
- name: Ensure OpenStaticFish MicroServices Doppler token is provided
assert:
that:
- doppler_openstaticfish_microservices_service_token | default("") | length > 0
fail_msg: doppler_openstaticfish_microservices_service_token must be provided for MicroServices runtime secrets.
- name: Ensure external-secrets namespace exists
shell: kubectl create namespace external-secrets --dry-run=client -o yaml | kubectl apply -f -
changed_when: true
@@ -34,14 +28,6 @@
changed_when: true
no_log: true
- name: Apply OpenStaticFish MicroServices Doppler service token secret
shell: >-
kubectl -n external-secrets create secret generic doppler-openstaticfish-microservices-service-token
--from-literal=dopplerToken='{{ doppler_openstaticfish_microservices_service_token | default("") }}'
--dry-run=client -o yaml | kubectl apply -f -
changed_when: true
no_log: true
- name: Apply GHCR pull secret for private MicroServices images
shell: >-
kubectl -n microservices create secret docker-registry ghcr-pull-secret