switch from duckdns.org to internal .lab dns

2026-01-01 15:03:06 +01:00
parent 23c38fc813
commit 9761996957
8 changed files with 16 additions and 16 deletions
--- a/.gitea/workflows/dockerimage.yaml
+++ b/.gitea/workflows/dockerimage.yaml
@@ -23,7 +23,7 @@ jobs:
      - name: Login to Gitea Container Registry
        uses: docker/login-action@v3
        with:
-          registry: gitea.arcodange.duckdns.org
+          registry: gitea.arcodange.lab
          username: ${{ github.actor }}
          password: ${{ secrets.PACKAGES_TOKEN }}
      
@@ -35,7 +35,7 @@ jobs:
          TAGS="latest ${{ github.ref_name }}"
          docker build -t app .
          for TAG in $TAGS; do
-            docker tag app gitea.arcodange.duckdns.org/${{ github.repository }}:$TAG
-            docker push gitea.arcodange.duckdns.org/${{ github.repository }}:$TAG
+            docker tag app gitea.arcodange.lab/${{ github.repository }}:$TAG
+            docker push gitea.arcodange.lab/${{ github.repository }}:$TAG
          done
        
--- a/.gitea/workflows/vault.yaml
+++ b/.gitea/workflows/vault.yaml
@@ -16,10 +16,10 @@ concurrency:

 .vault_step: &vault_step
  name: read vault secret
-  uses: https://gitea.arcodange.duckdns.org/arcodange-org/vault-action.git@main
+  uses: https://gitea.arcodange.lab/arcodange-org/vault-action.git@main
  id: vault-secrets
  with:
-    url: https://vault.arcodange.duckdns.org
+    url: https://vault.arcodange.lab
    jwtGiteaOIDC: ${{ needs.gitea_vault_auth.outputs.gitea_vault_jwt }}
    role: gitea_cicd_webapp
    method: jwt
--- a/chart/templates/config.yaml
+++ b/chart/templates/config.yaml
@@ -4,7 +4,7 @@ metadata:
  name: {{ include "webapp.name" . }}-config
  namespace: {{ .Release.Namespace }}
 data:
-  OAUTH_ALLOWED_HOSTS: webapp.arcodange.duckdns.org,webapp.arcodange.fr
+  OAUTH_ALLOWED_HOSTS: webapp.arcodange.lab,webapp.arcodange.fr
  # OAUTH_DEVICE_CODE_ALLOWED_IPS: 86.238.234.54,
  DATABASE_URL: postgres://pgbouncer_auth:pgbouncer_auth@pgbouncer.tools/postgres?sslmode=disable
 #  DATABASE_URL: postgres://username:password@localhost/dbname?sslmode=disable
--- a/chart/templates/localIngress.yaml
+++ b/chart/templates/localIngress.yaml
@@ -7,13 +7,13 @@ metadata:
    traefik.ingress.kubernetes.io/router.middlewares: localIp@file
    traefik.ingress.kubernetes.io/router.tls: 'true'
    traefik.ingress.kubernetes.io/router.tls.certresolver: letsencrypt
-    traefik.ingress.kubernetes.io/router.tls.domains.0.main: arcodange.duckdns.org
-    traefik.ingress.kubernetes.io/router.tls.domains.0.sans: webapp.arcodange.duckdns.org
+    traefik.ingress.kubernetes.io/router.tls.domains.0.main: arcodange.lab
+    traefik.ingress.kubernetes.io/router.tls.domains.0.sans: webapp.arcodange.lab
  name: webapp-local
  namespace: webapp
 spec:
  rules:
-    - host: webapp.arcodange.duckdns.org
+    - host: webapp.arcodange.lab
      http:
        paths:
          - backend:
--- a/chart/values.yaml
+++ b/chart/values.yaml
@@ -5,7 +5,7 @@
 replicaCount: 1

 image:
-  repository: gitea.arcodange.duckdns.org/arcodange-org/webapp
+  repository: gitea.arcodange.lab/arcodange-org/webapp
  pullPolicy: Always
  # Overrides the image tag whose default is the chart appVersion.
  tag: ""
@@ -63,11 +63,11 @@ ingress:
 #     traefik.ingress.kubernetes.io/router.entrypoints: websecure
 #     traefik.ingress.kubernetes.io/router.tls: "true"
 #     traefik.ingress.kubernetes.io/router.tls.certresolver: letsencrypt
-#     traefik.ingress.kubernetes.io/router.tls.domains.0.main: arcodange.duckdns.org
-#     traefik.ingress.kubernetes.io/router.tls.domains.0.sans: webapp.arcodange.duckdns.org
+#     traefik.ingress.kubernetes.io/router.tls.domains.0.main: arcodange.lab
+#     traefik.ingress.kubernetes.io/router.tls.domains.0.sans: webapp.arcodange.lab
 #     traefik.ingress.kubernetes.io/router.middlewares: localIp@file
 #   hosts:
-#     - host: webapp.arcodange.duckdns.org
+#     - host: webapp.arcodange.lab
 #       paths:
 #         - path: /
 #           pathType: Prefix
--- a/go.mod
+++ b/go.mod
@@ -1,4 +1,4 @@
-module gitea.arcodange.duckdns.org/arcodange-org/webapp
+module gitea.arcodange.lab/arcodange-org/webapp

 go 1.23

--- a/iac/providers.tf
+++ b/iac/providers.tf
@@ -8,7 +8,7 @@ terraform {
 }

 provider vault {
-    address = "https://vault.arcodange.duckdns.org"
+    address = "https://vault.arcodange.lab"
    auth_login_jwt { # TERRAFORM_VAULT_AUTH_JWT environment variable
        mount = "gitea_jwt"
        role = "gitea_cicd_webapp"
--- a/main.go
+++ b/main.go
@@ -489,7 +489,7 @@ func main() {

 	/*
 		Gitea doesn't come with device flow # https://github.com/go-gitea/gitea/issues/27309
-		https://gitea.arcodange.duckdns.org/.well-known/openid-configuration
+		https://gitea.arcodange.lab/.well-known/openid-configuration
 		"grant_types_supported": [
 		"authorization_code",
 		"refresh_token"