parent
ac0f1f7dc9
commit
ceca1f3bc9
GPG key ID:
F56BED6903BC5E37
30 changed files with 1971 additions and 45 deletions
1
coder/.gitignore
vendored
Normal file
1
coder/.gitignore
vendored
Normal file
|
|
@ -0,0 +1 @@
|
|||
charts/
|
||||
37
coder/config/secrets.enc.yml
Normal file
37
coder/config/secrets.enc.yml
Normal file
|
|
@ -0,0 +1,37 @@
|
|||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
name: coder-secrets
|
||||
type: Opaque
|
||||
stringData:
|
||||
OIDC_CLIENT_ID: ENC[AES256_GCM,data:4KD0RPoRdY23wwkwqoXFloAl3VHQsaVJq46psw/tybCic+g6,iv:LQuY/nTVbD8J62Ia4QNRPQq+mP2BX5cOufIOpaqdjHk=,tag:2hB0sZ6fG/Mdi/Mxi123yw==,type:str]
|
||||
OIDC_CLIENT_SECRET: ENC[AES256_GCM,data:8F2gjA8bMyh+g/MPppOtO8pGSvvjoNse2jPAYcH2vyfXNRNR2hn3OF56OkqAQUDgKh3mOMMIlOA=,iv:MSpf7TueXeJ9bJ9gMJAR7m97sbe/GG0GhIsDKOS8U5g=,tag:dJwpuxdG2tjEGSkoynstrg==,type:str]
|
||||
sops:
|
||||
kms: []
|
||||
gcp_kms: []
|
||||
azure_kv: []
|
||||
hc_vault: []
|
||||
age:
|
||||
- recipient: age18e0w4jn03n66qwg8h3rjstz7g5zx2vhvz28aterkfkfetrxtpuysftp6we
|
||||
enc: |
|
||||
-----BEGIN AGE ENCRYPTED FILE-----
|
||||
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBmNllWNkJSdm8rblRWQWY0
|
||||
U05Bdkw4OUlhTmZTY2VPOXp3UStKMTZpTGpRCmlxRVFlREtuSG85Zk4vb2lIZm1H
|
||||
SG9hTjc5bmppS0ZWNDVkajBHY2FlcnMKLS0tIGVPQTVHTktPbGVORys4Vk9pdEZp
|
||||
ZnhvczRaK09YL0crK0hwYUllZXErSk0K23F5ItL9qHYbuNVuWGzpgaXMN5LNwc+n
|
||||
LAtAoDwhsNhxNFTU+164rtjwHQ+NMp/xNIHiWMeOBz8zSkqCDAhxJg==
|
||||
-----END AGE ENCRYPTED FILE-----
|
||||
- recipient: age1yssdnqk90tn6zzggmwt70krndw04yfk9hwzdac3wsgfxmttngd7q89qzjr
|
||||
enc: |
|
||||
-----BEGIN AGE ENCRYPTED FILE-----
|
||||
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBwaU5ldHg2RjVqdUQxMysv
|
||||
d05jaEFsMXF6QXNlZ2I0SjhGb2pEeHl2WXh3CmtZcG1WZXY3SnBBTTU2cFh6Z1Vo
|
||||
RGd1OGt1cUhXc2VoUmJJaHJhRlQ1QVUKLS0tIEhscmZWU3Y2UFI2UVorbXVoQ2Yz
|
||||
VElCdDBrcEt0amlJUmlldENtSjYyczQK8BueJyu/9pJSqa3eYT/bW705O+Wzd6OF
|
||||
+COLZ8HmD6RFy6K+1uqRqy8ETfSqsaNC06ZdBtH3VKNPOk0ayAuWeg==
|
||||
-----END AGE ENCRYPTED FILE-----
|
||||
lastmodified: "2023-12-21T13:40:45Z"
|
||||
mac: ENC[AES256_GCM,data:nxoSscCX6drScTysPpdPCwNBpJ7IFjIHEDsoVtsMaC2XufxBHNs5iZLv0vc/QfPK4xTRuEjWxhpFq/XiqTkcArpj/19PopKawa9JAKwSjK+9h83rvhK2r0j8QUmKpx9CfRS4uR2e/u2SCLyGtoAFsZD/nwQYFh3o3y0GfpCz3FE=,iv:V/j4zOf2D9SFSJsr7v8/IM8Sor+pJDL520vXSQUwW6w=,tag:lvNKkyw51qVM/j0WB987JA==,type:str]
|
||||
pgp: []
|
||||
unencrypted_regex: ^(apiVersion|metadata|kind|type)$
|
||||
version: 3.8.1
|
||||
63
coder/config/values.coder.yml
Normal file
63
coder/config/values.coder.yml
Normal file
|
|
@ -0,0 +1,63 @@
|
|||
---
|
||||
coder:
|
||||
ingress:
|
||||
enable: true
|
||||
host: ide.icb4dc0.de
|
||||
wildcardHost: "*.ide.icb4dc0.de"
|
||||
annotations:
|
||||
gethomepage.dev/description: Remote IDE
|
||||
gethomepage.dev/enabled: "true"
|
||||
gethomepage.dev/group: Apps
|
||||
gethomepage.dev/icon: coder.png
|
||||
gethomepage.dev/name: Coder
|
||||
env:
|
||||
- name: CODER_WILDCARD_ACCESS_URL
|
||||
value: '*.ide.icb4dc0.de'
|
||||
- name: CODER_ACCESS_URL
|
||||
value: "https://ide.icb4dc0.de"
|
||||
- name: CODER_PG_CONNECTION_URL
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: default-cluster-pguser-coder
|
||||
key: uri
|
||||
- name: CODER_DISABLE_PASSWORD_AUTH
|
||||
value: "true"
|
||||
- name: CODER_OIDC_ISSUER_URL
|
||||
value: "https://code.icb4dc0.de/"
|
||||
- name: CODER_OIDC_SIGN_IN_TEXT
|
||||
value: "Sign in with Gitea"
|
||||
- name: CODER_OIDC_ICON_URL
|
||||
value: https://gitea.io/images/gitea.png
|
||||
- name: CODER_OIDC_CLIENT_ID
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: coder-secrets
|
||||
key: OIDC_CLIENT_ID
|
||||
- name: CODER_OIDC_CLIENT_SECRET
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: coder-secrets
|
||||
key: OIDC_CLIENT_SECRET
|
||||
- name: CODER_GITAUTH_0_ID
|
||||
value: primary-forgejo
|
||||
- name: CODER_GITAUTH_0_TYPE
|
||||
value: gitlab
|
||||
- name: CODER_GITAUTH_0_AUTH_URL
|
||||
value: https://code.icb4dc0.de/login/oauth/authorize
|
||||
- name: CODER_GITAUTH_0_TOKEN_URL
|
||||
value: https://code.icb4dc0.de/login/oauth/access_token
|
||||
- name: CODER_GITAUTH_0_VALIDATE_URL
|
||||
value: https://code.icb4dc0.de/login/oauth/userinfo
|
||||
- name: CODER_GITAUTH_0_CLIENT_ID
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: coder-secrets
|
||||
key: OIDC_CLIENT_ID
|
||||
- name: CODER_GITAUTH_0_CLIENT_SECRET
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: coder-secrets
|
||||
key: OIDC_CLIENT_SECRET
|
||||
|
||||
service:
|
||||
type: ClusterIP
|
||||
19
coder/kustomization.yaml
Normal file
19
coder/kustomization.yaml
Normal file
|
|
@ -0,0 +1,19 @@
|
|||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
|
||||
namespace: coder
|
||||
|
||||
resources:
|
||||
- "resources/namespace.yaml"
|
||||
|
||||
helmCharts:
|
||||
- name: coder
|
||||
repo: https://helm.coder.com/v2
|
||||
releaseName: coder
|
||||
namespace: coder
|
||||
version: "2.5.1"
|
||||
valuesFile: config/values.coder.yml
|
||||
skipTests: true
|
||||
|
||||
generators:
|
||||
- ./secret-generator.yaml
|
||||
7
coder/resources/namespace.yaml
Normal file
7
coder/resources/namespace.yaml
Normal file
|
|
@ -0,0 +1,7 @@
|
|||
---
|
||||
apiVersion: v1
|
||||
kind: Namespace
|
||||
metadata:
|
||||
name: coder
|
||||
labels:
|
||||
prometheus: default
|
||||
10
coder/secret-generator.yaml
Normal file
10
coder/secret-generator.yaml
Normal file
|
|
@ -0,0 +1,10 @@
|
|||
apiVersion: viaduct.ai/v1
|
||||
kind: ksops
|
||||
metadata:
|
||||
name: coder-secret-generator
|
||||
annotations:
|
||||
config.kubernetes.io/function: |
|
||||
exec:
|
||||
path: ksops
|
||||
files:
|
||||
- ./config/secrets.enc.yml
|
||||
Loading…
Add table
Add a link
Reference in a new issue