|
|
c38f77302f
|
vault: inject comms and grafana secrets
|
2026-01-14 22:29:27 -03:00 |
|
|
|
4bb6c7e212
|
health: fix wger env template newlines
|
2026-01-14 22:23:48 -03:00 |
|
|
|
e391a78f25
|
health: avoid surge rollout for wger
|
2026-01-14 22:16:36 -03:00 |
|
|
|
349a6cca3b
|
health: load wger secrets without shell expansion
|
2026-01-14 22:11:55 -03:00 |
|
|
|
71f533ca1f
|
harbor: fix vault env templates
|
2026-01-14 22:07:51 -03:00 |
|
|
|
9652d9d3cf
|
health: escape wger env vars and fix nginx temp paths
|
2026-01-14 22:03:40 -03:00 |
|
|
|
22e3004b0a
|
harbor: preserve required volume mounts
|
2026-01-14 21:29:40 -03:00 |
|
|
|
9743064ad3
|
vault: keep copy loop from clobbering args
|
2026-01-14 21:24:16 -03:00 |
|
|
|
8a750ac3ab
|
harbor: fix vault secretKey file path
|
2026-01-14 21:17:05 -03:00 |
|
|
|
eeeb69fb7a
|
harbor: mount vault entrypoint script
|
2026-01-14 21:02:50 -03:00 |
|
|
|
713fedfe73
|
harbor: move secrets to vault sidecars
|
2026-01-14 20:46:46 -03:00 |
|
|
|
c98d24e91e
|
jenkins: load vault env via env
|
2026-01-14 17:57:10 -03:00 |
|
|
|
4ff2f3e889
|
jenkins: escape vault env values
|
2026-01-14 17:53:09 -03:00 |
|
|
|
bb9a4e6d8b
|
longhorn: read oauth2-proxy secrets from vault
|
2026-01-14 17:48:12 -03:00 |
|
|
|
fb671865e5
|
vault: inject remaining services with wrappers
|
2026-01-14 17:29:09 -03:00 |
|
|
|
fb9578b624
|
vault: inject monitoring exporter and health jobs
|
2026-01-14 14:49:41 -03:00 |
|
|
|
4f1fb62ab3
|
vault: bump job names for injector
|
2026-01-14 14:33:57 -03:00 |
|
|
|
98d67293bc
|
vault: prepopulate injector for jobs
|
2026-01-14 14:29:29 -03:00 |
|
|
|
f6fc250fe1
|
comms: add vault-secrets emptyDir for mas
|
2026-01-14 14:24:55 -03:00 |
|
|
|
393916ded9
|
comms: shorten vault inject file names
|
2026-01-14 14:21:58 -03:00 |
|
|
|
e92cfa7dba
|
vault: move comms and mailu workloads to injector
|
2026-01-14 14:17:26 -03:00 |
|
|
|
d559aeb464
|
keycloak: schedule on arm64 workers
|
2026-01-14 13:49:37 -03:00 |
|
|
|
6ba509dbe1
|
gitea: tolerate oidc init failures
|
2026-01-14 13:46:34 -03:00 |
|
|
|
ab50780f49
|
gitea: trim vault secret newlines
|
2026-01-14 13:43:56 -03:00 |
|
|
|
9c16d0fbc0
|
keycloak: bump job names
|
2026-01-14 13:42:08 -03:00 |
|
|
|
89f4b0dbdf
|
vault: stabilize injector templates and add health apps
|
2026-01-14 13:40:29 -03:00 |
|
|
|
58c880d9ce
|
keycloak: switch jobs to vault injector
|
2026-01-14 13:20:57 -03:00 |
|
|
|
92fbde08eb
|
nextcloud: fix vault template keys
|
2026-01-14 13:00:21 -03:00 |
|
|
|
0aa16757e9
|
gitea: run vault init first
|
2026-01-14 12:44:49 -03:00 |
|
|
|
36fb225cbd
|
bstein-dev-home: bump onboarding job
|
2026-01-14 12:34:02 -03:00 |
|
|
|
16c62d5a4a
|
vault: move core apps to injector
|
2026-01-14 12:28:10 -03:00 |
|
|
|
b1f9df4d83
|
vault: sync harbor pulls
|
2026-01-14 10:07:31 -03:00 |
|
|
|
b8e50bb0a6
|
monitoring: move grafana smtp to vault
|
2026-01-14 06:41:34 -03:00 |
|
|
|
37302664c2
|
vault: add remaining secret syncs
|
2026-01-14 06:16:42 -03:00 |
|
|
|
5683b3f941
|
jobs: bump names after vault tweaks
|
2026-01-14 05:47:21 -03:00 |
|
|
|
9ec08e1dc2
|
jobs: drop apk in kubectl image
|
2026-01-14 05:41:01 -03:00 |
|
|
|
6898641b0a
|
comms: restore livekit token env
|
2026-01-14 05:35:51 -03:00 |
|
|
|
35369d53d8
|
jobs: bump names for immutability
|
2026-01-14 05:32:07 -03:00 |
|
|
|
96a7c67674
|
mailu: bump sync job name
|
2026-01-14 05:11:27 -03:00 |
|
|
|
de3db3133b
|
vault(consumption): sync secrets via CSI
|
2026-01-14 05:07:23 -03:00 |
|
|
|
8d526e383f
|
vault: send oidc role payload as json
|
2026-01-14 03:45:03 -03:00 |
|
|
|
bb2a3ba904
|
fix(gitea): inline vault secrets
|
2026-01-14 03:11:53 -03:00 |
|
|
|
3384533acd
|
fix: resolve gitea mounts and bump portal job
|
2026-01-14 03:00:10 -03:00 |
|
|
|
4111fb079f
|
vault: write bound_claims as file
|
2026-01-14 02:56:29 -03:00 |
|
|
|
fd2ae6bdd5
|
vault: wire more services to CSI
|
2026-01-14 02:54:59 -03:00 |
|
|
|
8a358832f3
|
vault: fix oidc scopes parsing
|
2026-01-14 02:52:51 -03:00 |
|
|
|
c3541b72c3
|
vault: run oidc config with sh
|
2026-01-14 02:28:38 -03:00 |
|
|
|
55234f8536
|
vault: align oidc roles with keycloak
|
2026-01-14 02:24:32 -03:00 |
|
|
|
50aec198a4
|
fix: detect vault initialized state correctly
|
2026-01-14 01:42:28 -03:00 |
|
|
|
cb5796cb71
|
fix: make vault k8s auth script posix
|
2026-01-14 01:38:27 -03:00 |
|
