admin/felhom.eu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: registry credentials from k8s Secret via env vars

Browse Source 
- main.go: REGISTRY_USERNAME / REGISTRY_TOKEN env vars override config file
- manifests/hub.yaml: reference Secret/gitea-creds, remove plaintext creds from ConfigMap

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
authentik Default Admin
2026-02-20 14:11:10 +01:00
parent 0fcc7d8e6f
commit 95bb261fa8
2 changed files with 20 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
hub/cmd/hub/main.go
+8
View File
@@ -71,6 +71,14 @@ func main() {
// Load config // Load config
cfg := loadConfig(*configPath, logger) cfg := loadConfig(*configPath, logger)
// Environment variable overrides (for k8s Secrets)
if v := os.Getenv("REGISTRY_USERNAME"); v != "" {
cfg.Registry.Username = v
}
if v := os.Getenv("REGISTRY_TOKEN"); v != "" {
cfg.Registry.Token = v
}
// Ensure data dir exists // Ensure data dir exists
os.MkdirAll(cfg.Server.DataDir, 0755) os.MkdirAll(cfg.Server.DataDir, 0755)
manifests/hub.yaml
+12 -2
View File
@@ -84,8 +84,8 @@ data:
resend_api_key: "re_XZZenCJs_LyJnU12jZWfEn9rK85Gc83DK" resend_api_key: "re_XZZenCJs_LyJnU12jZWfEn9rK85Gc83DK"
registry: registry:
image: "gitea.dooplex.hu/admin/felhom-controller" image: "gitea.dooplex.hu/admin/felhom-controller"
username: "admin" # username + token injected via REGISTRY_USERNAME / REGISTRY_TOKEN env vars
token: "e93ef87f90cc13a476964ee965bfe2e75d945a33" # from Secret/gitea-creds (see Deployment below)
check_interval: "6h" check_interval: "6h"
template_interval: "1h" template_interval: "1h"
server: server:
@@ -124,6 +124,16 @@ spec:
env: env:
- name: TZ - name: TZ
value: "Europe/Budapest" value: "Europe/Budapest"
- name: REGISTRY_USERNAME
valueFrom:
secretKeyRef:
name: gitea-creds
key: username
- name: REGISTRY_TOKEN
valueFrom:
secretKeyRef:
name: gitea-creds
key: password
resources: resources:
requests: requests:
memory: "64Mi" memory: "64Mi"