Sienna Meridian Satterwhite
302b7ba56b
People (desk chart v0.0.7): - Add people-values.yaml with all env vars wired to ConfigMaps and Secrets. DB password, S3 credentials, OIDC client, and Django secret key all come from VSO-managed K8s Secrets via secretKeyRef — nothing hardcoded. - Add Helm chart entry to kustomization.yaml (repo: suitenumerique/people). La Suite VSO secrets (vault-secrets.yaml): - seaweedfs-s3-credentials VSS (shared S3 creds → S3_ACCESS_KEY / S3_SECRET_KEY) - hive-db-url VDS (database/static-creds/hive → postgresql:// DSN, 24h rotation) - hive-oidc VSS (secret/hive → client-id / client-secret) - people-db-credentials VDS (database/static-creds/people → password, 24h rotation) - people-django-secret VSS (secret/people → DJANGO_SECRET_KEY)
29 lines
727 B
YAML
29 lines
727 B
YAML
apiVersion: kustomize.config.k8s.io/v1beta1
|
|
kind: Kustomization
|
|
|
|
namespace: lasuite
|
|
|
|
resources:
|
|
- namespace.yaml
|
|
- postfix-deployment.yaml
|
|
- hive-config.yaml
|
|
- hive-deployment.yaml
|
|
- hive-service.yaml
|
|
- seaweedfs-buckets.yaml
|
|
- shared-config.yaml
|
|
- oidc-clients.yaml
|
|
- vault-secrets.yaml
|
|
|
|
# La Suite Numérique Helm charts.
|
|
# Charts with a published Helm repo use helmCharts below.
|
|
# find has no published repo yet — deploy manually when OpenSearch is ready.
|
|
helmCharts:
|
|
# helm repo add people https://suitenumerique.github.io/people/
|
|
- name: desk
|
|
repo: https://suitenumerique.github.io/people/
|
|
version: "0.0.7"
|
|
releaseName: people
|
|
namespace: lasuite
|
|
valuesFile: people-values.yaml
|
|
|