daf8a7bd56
- Add terraform workspace at apps/overlays/uat/terraform/ (backend.tf, main.tf, variables.tf, users.tf, imports.tf, terraform.tfvars) - Add Terraform CRD (authentik-terraform.yaml) with correct path ./apps/overlays/uat/terraform relative to groombook/app repo root - Add GitRepository CRD (gitrepository-groombook.yaml) pointing to groombook/app at fix/gro-844-network-policy branch (NOT groombook/infra which no longer exists) - Add kustomization.yaml to tie it together Root cause: the GitRepository was pointing to https://github.com/groombook/infra which no longer exists, and the terraform files were not committed to the current repository at the correct path. Co-Authored-By: Paperclip <noreply@paperclip.ing>
22 lines
946 B
Terraform
22 lines
946 B
Terraform
# =============================================================================
|
|
# Backend configuration for Terraform state
|
|
# =============================================================================
|
|
# Uses Kubernetes backend with tf-controller managed state secret.
|
|
# tf-controller creates a Kubernetes Secret named:
|
|
# tfstate-<name>-<secret_suffix>
|
|
# i.e. tfstate-authentik-uat-authentik-uat-tf-state
|
|
# in the namespace specified by the Terraform CRD metadata.namespace (groombook-uat).
|
|
#
|
|
# Valid Kubernetes backend attributes for tf-controller:
|
|
# secret_suffix, namespace, config_path, cluster_ca_cert, client_certificate,
|
|
# client_key, token, exec, host, insecure, username, password,
|
|
# in_cluster, load_config, config_paths
|
|
# =============================================================================
|
|
|
|
terraform {
|
|
backend "kubernetes" {
|
|
secret_suffix = "authentik-uat-tf-state"
|
|
namespace = "groombook-uat"
|
|
}
|
|
}
|