shahab/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: move all secrets to a single namespace and consolidate dups

Browse Source
This commit is contained in:
Shahab Dogar
2025-09-21 17:52:31 +05:00
parent 109c94832a
commit 9dea58bda6
2 changed files with 14 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
1password/index.ts
View File

@@ -5,13 +5,14 @@ import { KubernetesProvider } from "@cdktf/provider-kubernetes/lib/provider";
type OnePasswordSecret = { type OnePasswordSecret = {
id?: string; id?: string;
namespace?: string;
name: string; name: string;
namespace: string;
itemPath: string; itemPath: string;
}; };
type OnePasswordOptions = { type OnePasswordOptions = {
provider: KubernetesProvider; provider: KubernetesProvider;
namespace: string;
}; };
export class OnePassword extends Construct { export class OnePassword extends Construct {
@@ -32,7 +33,7 @@ export class OnePassword extends Construct {
kind: "OnePasswordItem", kind: "OnePasswordItem",
metadata: { metadata: {
name: secret.name, name: secret.name,
namespace: secret.namespace, namespace: secret.namespace ?? options.namespace,
annotations: { annotations: {
"operator.1password.io/auto-restart": "true", "operator.1password.io/auto-restart": "true",
}, },

50
1password/secrets.json
View File

@@ -1,78 +1,50 @@
[ [
{ {
"name": "gitea-admin", "name": "gitea-admin",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/gitea-admin" "itemPath": "vaults/Lab/items/gitea-admin"
}, },
{
"name": "gitea-postgres",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/gitea-postgres"
},
{ {
"name": "pihole-admin", "name": "pihole-admin",
"namespace": "pihole-system",
"itemPath": "vaults/Lab/items/pihole" "itemPath": "vaults/Lab/items/pihole"
}, },
{ {
"name": "postgres-password", "name": "postgres-password",
"namespace": "postgres-system",
"itemPath": "vaults/Lab/items/Postgres" "itemPath": "vaults/Lab/items/Postgres"
}, },
{ {
"name": "runner-secret", "name": "runner-secret",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/Gitea" "itemPath": "vaults/Lab/items/Gitea"
}, },
{ {
"name": "cloudflare-token", "name": "cloudflare-token",
"namespace": "cert-manager", "itemPath": "vaults/Lab/items/cloudflare"
"itemPath": "vaults/Lab/items/Cloudflare"
}, },
{ {
"name": "cloudflare-token", "name": "valkey",
"id": "cloudflare-ddns-api-token", "itemPath": "vaults/Lab/items/valkey"
"namespace": "cloudflare-system",
"itemPath": "vaults/Lab/items/Cloudflare"
},
{
"name": "authentik-postgres",
"namespace": "authentik-system",
"itemPath": "vaults/Lab/items/authentik-postgres"
},
{
"name": "redis",
"namespace": "redis-system",
"itemPath": "vaults/Lab/items/redis"
},
{
"name": "authentik-redis",
"namespace": "authentik-system",
"itemPath": "vaults/Lab/items/redis"
}, },
{ {
"name": "gitea-oauth", "name": "gitea-oauth",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/gitea-oauth" "itemPath": "vaults/Lab/items/gitea-oauth"
}, },
{ {
"name": "gitea-elasticsearch", "name": "gitea-elasticsearch",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/gitea-elasticsearch" "itemPath": "vaults/Lab/items/gitea-elasticsearch"
}, },
{
"name": "gitea-redis",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/gitea-redis"
},
{ {
"name": "smtp-token", "name": "smtp-token",
"namespace": "gitea-system",
"itemPath": "vaults/Lab/items/smtp-token" "itemPath": "vaults/Lab/items/smtp-token"
}, },
{ {
"name": "longhorn-encryption", "name": "longhorn-encryption",
"namespace": "longhorn-system",
"itemPath": "vaults/Lab/items/longhorn-encryption" "itemPath": "vaults/Lab/items/longhorn-encryption"
},
{
"name": "authentik-secret-key",
"itemPath": "vaults/Lab/items/authentik-secret-key"
},
{
"name": "curseforge",
"itemPath": "vaults/Lab/items/curseforge"
} }
] ]