OpenStaticFish/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

fix: reuse existing rancher bootstrap secret
Deploy Cluster / Terraform (push) Has been cancelled
Details
Deploy Cluster / Ansible (push) Has been cancelled
Details

Browse Source
This commit is contained in:
MichaelFisher1997
2026-05-03 20:28:29 +00:00
parent bac568d540
commit 72ba3b6c4f
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitea/workflows/deploy.yml
+12
View File
@@ -809,10 +809,22 @@ jobs:
wait_for_rancher_bootstrap_secrets() { wait_for_rancher_bootstrap_secrets() {
local timeout_seconds="$1" local timeout_seconds="$1"
local deadline local deadline
local existing_bootstrap_password
local force_sync local force_sync
local api_failures=0 local api_failures=0
deadline=$(($(date +%s) + timeout_seconds)) deadline=$(($(date +%s) + timeout_seconds))
if [ -z "${RANCHER_BOOTSTRAP_PASSWORD}" ]; then
for namespace in cattle-system flux-system; do
if existing_bootstrap_password="$(kubectl -n "${namespace}" get secret/rancher-bootstrap-password -o jsonpath='{.data.bootstrapPassword}' 2>/dev/null | base64 -d 2>/dev/null)" \
&& [ -n "${existing_bootstrap_password}" ]; then
RANCHER_BOOTSTRAP_PASSWORD="${existing_bootstrap_password}"
export RANCHER_BOOTSTRAP_PASSWORD
break
fi
done
fi
if [ -z "${RANCHER_BOOTSTRAP_PASSWORD}" ]; then if [ -z "${RANCHER_BOOTSTRAP_PASSWORD}" ]; then
if [ -z "${DOPPLER_HETZNERTERRA_SERVICE_TOKEN}" ]; then if [ -z "${DOPPLER_HETZNERTERRA_SERVICE_TOKEN}" ]; then
echo "RANCHER_BOOTSTRAP_PASSWORD and DOPPLER_HETZNERTERRA_SERVICE_TOKEN are both empty; cannot seed Rancher bootstrap secret" >&2 echo "RANCHER_BOOTSTRAP_PASSWORD and DOPPLER_HETZNERTERRA_SERVICE_TOKEN are both empty; cannot seed Rancher bootstrap secret" >&2