thomasklein/terraform-app-gitea
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

upgrade to 10.1.4
Some checks reported errors
continuous-integration/drone/push Build was killed
Details

Browse Source
This commit is contained in:
Tamas Kiss
2025-01-15 07:00:19 +01:00
parent 91683d69a3
commit 8e72d7acb3
1 changed files with 75 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

95
gitea.tf
View File

@@ -10,21 +10,21 @@ resource "helm_release" "this" {
repository = "https://dl.gitea.io/charts/" repository = "https://dl.gitea.io/charts/"
chart = "gitea" chart = "gitea"
version = "7.0.4" version = "10.1.4"
create_namespace = false create_namespace = false
set { set {
name = "clusterDomain" name = "clusterDomain"
value = "k8s.lawndale" value = "k8s.lawndale"
} }
values = [ values = [
jsonencode({ jsonencode({
ingress = { ingress = {
enabled = true enabled = true
className = "traefik"
annotations = { annotations = {
"kubernetes.io/ingress.class" = "traefik"
"traefik.ingress.kubernetes.io/router.entrypoints" = "websecure" "traefik.ingress.kubernetes.io/router.entrypoints" = "websecure"
"traefik.ingress.kubernetes.io/router.tls" = "true" "traefik.ingress.kubernetes.io/router.tls" = "true"
"traefik.ingress.kubernetes.io/router.tls.domains.0.main" = local.ingress_domain "traefik.ingress.kubernetes.io/router.tls.domains.0.main" = local.ingress_domain
@@ -50,11 +50,17 @@ resource "helm_release" "this" {
} }
] ]
} }
service = {
http = {
externalTrafficPolicy = "Local"
}
}
}), }),
jsonencode({ jsonencode({
service = { service = {
ssh = { ssh = {
type = "LoadBalancer" type = "LoadBalancer"
externalTrafficPolicy = "Local"
} }
} }
}), }),
@@ -101,42 +107,83 @@ resource "helm_release" "this" {
gitea = { gitea = {
config = { config = {
mailer = { mailer = {
ENABLED = true ENABLED = true
FROM = "gitea@git.thomasklein.me" FROM = "gitea@git.thomasklein.me"
PROTOCOL = "smtp" PROTOCOL = "smtp"
SMTP_ADDR = "nat.lawndale" SMTP_ADDR = "nat.lawndale"
SMTP_PORT = "25" SMTP_PORT = "25"
## Deprecated config for 1.17 ## Deprecated config for 1.17
HOST = "nat.lawndale:25" HOST = "nat.lawndale:25"
IS_TLS_ENABLED = false IS_TLS_ENABLED = false
MAILER_TYPE = "smtp" MAILER_TYPE = "smtp"
} }
} }
} }
}), }),
jsonencode({ jsonencode({
persistence = { persistence = {
enabled = true enabled = true
existingClaim = module.gitea_persistance.pvc_name create = false
claimName = module.gitea_persistance.pvc_name
} }
}), }),
jsonencode({ jsonencode({
postgresql = { postgresql = {
enabled = true enabled = true
persistence = { primary = {
enabled = true persistence = {
existingClaim = module.postgres_persistance.pvc_name enabled = true
existingClaim = module.postgres_persistance.pvc_name
claimName = module.postgres_persistance.pvc_name
}
podSecurityContext = {
enabled = true
}
volumePermissions = {
enabled = true
}
} }
podSecurityContext = { }
enabled = true }),
} # Non-HA config base, see https://gitea.com/gitea/helm-chart/src/tag/v10.1.4#single-pod-configurations
volumePermissions = { jsonencode({
enabled = true "redis-cluster" = {
enabled = false
}
"postgresql-ha" = {
enabled = false
}
gitea = {
config = {
database = {
DB_TYPE = "postgres"
}
session = {
PROVIDER = "db"
}
cache = {
ADAPTER = "memory"
}
queue = {
TYPE = "level"
}
indexer = {
ISSUE_INDEXER_TYPE = "bleve"
REPO_INDEXER_ENABLED = true
}
} }
} }
}), }),
] ]
set_sensitive {
name = "postgresql.global.postgresql.auth.password"
value = random_password.postgresql_gitea.result
}
set_sensitive {
name = "postgresql.global.postgresql.auth.postgresPassword"
value = random_password.postgresql.result
}
set_sensitive { set_sensitive {
name = "gitea.oauth[0].key" name = "gitea.oauth[0].key"
value = aws_cognito_user_pool_client.gitea.id value = aws_cognito_user_pool_client.gitea.id
@@ -152,6 +199,14 @@ resource "helm_release" "this" {
} }
} }
resource "random_password" "postgresql_gitea" {
length = 5
}
resource "random_password" "postgresql" {
length = 10
}
resource "random_password" "gitea_admin" { resource "random_password" "gitea_admin" {
length = 16 length = 16
special = true special = true