aboutsummaryrefslogtreecommitdiffstats
path: root/kubernetes/namespaces/default/pixels
diff options
context:
space:
mode:
authorGravatar Chris Lovering <[email protected]>2024-01-08 14:58:05 +0000
committerGravatar Chris Lovering <[email protected]>2024-01-31 14:00:10 +0000
commitd7472f7f775b195ddd55d7a953ce79ba9e14803e (patch)
tree2fc376f929f3f390e67a429841ba598470af0fb7 /kubernetes/namespaces/default/pixels
parentBump dorny/paths-filter from 2 to 3 (#177) (diff)
Move non-secret secrets from secrets.yaml files to config maps
Diffstat (limited to 'kubernetes/namespaces/default/pixels')
-rw-r--r--kubernetes/namespaces/default/pixels/README.md7
-rw-r--r--kubernetes/namespaces/default/pixels/configmap.yaml12
-rw-r--r--kubernetes/namespaces/default/pixels/deployment.yaml2
-rw-r--r--kubernetes/namespaces/default/pixels/secrets.yamlbin1185 -> 975 bytes
4 files changed, 14 insertions, 7 deletions
diff --git a/kubernetes/namespaces/default/pixels/README.md b/kubernetes/namespaces/default/pixels/README.md
index 10e4a5d..f4ebf12 100644
--- a/kubernetes/namespaces/default/pixels/README.md
+++ b/kubernetes/namespaces/default/pixels/README.md
@@ -9,17 +9,10 @@ It requires a `pixels-env` secret with the following entries:
| Environment | Description |
|---------------|---------------------------------------------------------------------------------------------------------|
| AUTH_URL | A Discord OAuth2 URL with scopes: identify & guilds.members.read |
-| BASE_URL | Where the root endpoint can be found |
| CLIENT_ID | Discord Oauth2 client ID |
| CLIENT_SECRET | Discord Oauth2 client secret |
| DATABASE_URL | Postgres database URL. |
-| FORCE_LOGIN | Whether to requires authorization for all endpoints beside the login page, and limits access to helpers |
-| GUILD_ID | The guild to check for user roles in |
-| HELPERS_ROLE | Helpers role ID |
| JWT_SECRET | 32 byte (64 digit hex string) secret for encoding tokens. Any value can be used. |
-| LOG_LEVEL | What level to log at |
-| MOD_ROLE | Moderator role ID |
-| PRODUCTION | Whether the app is in production |
| REDIS_URL | Redis storage URL |
| SENTRY_DSN | The Sentry DSN to send sentry events to |
| WEBHOOK_URL | The webhook to periodically post the canvas state to |
diff --git a/kubernetes/namespaces/default/pixels/configmap.yaml b/kubernetes/namespaces/default/pixels/configmap.yaml
new file mode 100644
index 0000000..c3ccd50
--- /dev/null
+++ b/kubernetes/namespaces/default/pixels/configmap.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+ name: pixels-config-env
+data:
+ BASE_URL: https://pixels.pythondiscord.com
+ FORCE_LOGIN: 'True'
+ GUILD_ID: '267624335836053506'
+ HELPERS_ROLE: '267630620367257601'
+ LOG_LEVEL: debug
+ MOD_ROLE: '267630620367257601'
+ PRODUCTION: 'true'
diff --git a/kubernetes/namespaces/default/pixels/deployment.yaml b/kubernetes/namespaces/default/pixels/deployment.yaml
index 7775216..34e7b50 100644
--- a/kubernetes/namespaces/default/pixels/deployment.yaml
+++ b/kubernetes/namespaces/default/pixels/deployment.yaml
@@ -21,6 +21,8 @@ spec:
envFrom:
- secretRef:
name: pixels-env
+ - configMapRef:
+ name: pixels-config-env
startupProbe:
httpGet:
path: /health
diff --git a/kubernetes/namespaces/default/pixels/secrets.yaml b/kubernetes/namespaces/default/pixels/secrets.yaml
index b3c77cd..f9db2fb 100644
--- a/kubernetes/namespaces/default/pixels/secrets.yaml
+++ b/kubernetes/namespaces/default/pixels/secrets.yaml
Binary files differ
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-22 02:30:32 +0000