thomasklein/terraform-app-gitea
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

upgrade to 10.1.4
Some checks reported errors
continuous-integration/drone/push Build was killed
Details

Browse Source
This commit is contained in:
Tamas Kiss
2025-01-15 07:00:19 +01:00
parent 91683d69a3
commit 8e72d7acb3
1 changed files with 75 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

61
gitea.tf
View File

@@ -10,7 +10,7 @@ resource "helm_release" "this" {
repository = "https://dl.gitea.io/charts/" repository = "https://dl.gitea.io/charts/"
chart = "gitea" chart = "gitea"
version = "7.0.4" version = "10.1.4"
create_namespace = false create_namespace = false
@@ -23,8 +23,8 @@ resource "helm_release" "this" {
jsonencode({ jsonencode({
ingress = { ingress = {
enabled = true enabled = true
className = "traefik"
annotations = { annotations = {
"kubernetes.io/ingress.class" = "traefik"
"traefik.ingress.kubernetes.io/router.entrypoints" = "websecure" "traefik.ingress.kubernetes.io/router.entrypoints" = "websecure"
"traefik.ingress.kubernetes.io/router.tls" = "true" "traefik.ingress.kubernetes.io/router.tls" = "true"
"traefik.ingress.kubernetes.io/router.tls.domains.0.main" = local.ingress_domain "traefik.ingress.kubernetes.io/router.tls.domains.0.main" = local.ingress_domain
@@ -50,11 +50,17 @@ resource "helm_release" "this" {
} }
] ]
} }
service = {
http = {
externalTrafficPolicy = "Local"
}
}
}), }),
jsonencode({ jsonencode({
service = { service = {
ssh = { ssh = {
type = "LoadBalancer" type = "LoadBalancer"
externalTrafficPolicy = "Local"
} }
} }
}), }),
@@ -117,15 +123,18 @@ resource "helm_release" "this" {
jsonencode({ jsonencode({
persistence = { persistence = {
enabled = true enabled = true
existingClaim = module.gitea_persistance.pvc_name create = false
claimName = module.gitea_persistance.pvc_name
} }
}), }),
jsonencode({ jsonencode({
postgresql = { postgresql = {
enabled = true enabled = true
primary = {
persistence = { persistence = {
enabled = true enabled = true
existingClaim = module.postgres_persistance.pvc_name existingClaim = module.postgres_persistance.pvc_name
claimName = module.postgres_persistance.pvc_name
} }
podSecurityContext = { podSecurityContext = {
enabled = true enabled = true
@@ -134,9 +143,47 @@ resource "helm_release" "this" {
enabled = true enabled = true
} }
} }
}
}),
# Non-HA config base, see https://gitea.com/gitea/helm-chart/src/tag/v10.1.4#single-pod-configurations
jsonencode({
"redis-cluster" = {
enabled = false
}
"postgresql-ha" = {
enabled = false
}
gitea = {
config = {
database = {
DB_TYPE = "postgres"
}
session = {
PROVIDER = "db"
}
cache = {
ADAPTER = "memory"
}
queue = {
TYPE = "level"
}
indexer = {
ISSUE_INDEXER_TYPE = "bleve"
REPO_INDEXER_ENABLED = true
}
}
}
}), }),
] ]
set_sensitive {
name = "postgresql.global.postgresql.auth.password"
value = random_password.postgresql_gitea.result
}
set_sensitive {
name = "postgresql.global.postgresql.auth.postgresPassword"
value = random_password.postgresql.result
}
set_sensitive { set_sensitive {
name = "gitea.oauth[0].key" name = "gitea.oauth[0].key"
value = aws_cognito_user_pool_client.gitea.id value = aws_cognito_user_pool_client.gitea.id
@@ -152,6 +199,14 @@ resource "helm_release" "this" {
} }
} }
resource "random_password" "postgresql_gitea" {
length = 5
}
resource "random_password" "postgresql" {
length = 10
}
resource "random_password" "gitea_admin" { resource "random_password" "gitea_admin" {
length = 16 length = 16
special = true special = true