arcodange-org/factory
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

setup gcs backup bucket for longhorn

Browse Source
This commit is contained in:
Gabriel Radureau
2025-08-31 20:50:28 +02:00
parent b9a46afb82
commit 2d4cb5d8a5
5 changed files with 129 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
iac/gitea_tofu_ci_user.tf
View File

@@ -1,6 +1,6 @@
resource "random_password" "tofu" {
length = 32
length = 32
}
resource "gitea_user" "tofu" {
username = "tofu_module_reader"
@@ -8,24 +8,24 @@ resource "gitea_user" "tofu" {
password = random_password.tofu.result
email = "tofu-module-reader@arcodange.fake"
must_change_password = false
full_name = "restricted CI user"
prohibit_login = false
restricted = true
visibility = "private"
full_name = "restricted CI user"
prohibit_login = false
restricted = true
visibility = "private"
}
resource "tls_private_key" "tofu" {
algorithm = "ED25519"
algorithm = "ED25519"
}
resource "gitea_public_key" "tofu" {
title = "tofu"
key = tls_private_key.tofu.public_key_openssh
username = gitea_user.tofu.username
title = "tofu"
key = tls_private_key.tofu.public_key_openssh
username = gitea_user.tofu.username
}
resource "vault_kv_secret" "gitea_admin_token" {
path = "kvv1/gitea/tofu_module_reader"
data_json = jsonencode({
ssh_private_key = tls_private_key.tofu.private_key_openssh
ssh_public_key = tls_private_key.tofu.public_key_openssh
ssh_public_key = tls_private_key.tofu.public_key_openssh
})
}