devel: fix (kyverno) secret setup

components/local/keyvault.yaml

@@ -1,16 +0,0 @@
-apiVersion: dapr.io/v1alpha1
-kind: Component
-metadata:
-  name: azure-keyvault
-spec:
-  type: secretstores.azure.keyvault
-  version: v1
-  metadata:
-  - name: vaultName
-    value: atlantisvault
-  - name: azureTenantId
-    value: 3f737008-e9a0-4485-9d27-40329d288089
-  - name: azureClientId
-    value: abe60921-8039-4112-9533-f40935906c65
-  - name: azureClientSecret
-    value: secret

shell.nix

@@ -27,7 +27,7 @@ pkgs.mkShell {
   shellHook = ''
     export BARENTSWATCH_SECRET=$USER-atlantis-barentswatch
     export APP_NAME=$USER-atlantis
-    export APP_NAMESPACE=$USER
+    export APP_NAMESPACE=$USER-atlantis
     export TILT_ENV=$USER
     export TILT_NAMESPACE=$USER
   '';

tilt/tilt/appsettings.json

@@ -29,7 +29,7 @@
     "sorcerer" : "https://sorcerer.ekman.oceanbox.io",
     "allowedOrigins": [
         "https://atlantis.beta.oceanbox.io",
-        "https://jonas-atlantis.dev.oceanbox.io",
+        "https://<x>-atlantis.dev.oceanbox.io",
         "https://atlantis.local.oceanbox.io:8080"
     ],
     "appName": "atlantis",

tilt/tilt/default.env

@@ -1,4 +0,0 @@
-DATA_PROTECTION_TOKEN=""
-OIDC_CLIENT_SECRET="3QjfSPmAemjn34XVA2o1fvoS7I4gKvOR"
-BARENTSWATCH_CLIENT_ID="simen.kirkvik@tromso.serit.no:simkir-tilt-atlantis"
-BARENTSWATCH_SECRET="d9tInZ1XpeDAxD.DySv'*SB=P"

tilt/tilt/kustomization.yaml

@@ -4,10 +4,6 @@ configMapGenerator:
 - name: <x>-atlantis-appsettings
   files:
     - appsettings.json
-secretGenerator:
-- name: <x>-atlantis-env
-  envs:
-  - default.env
 patches:
   - target:
       group: apps

tilt/tilt/secrets.yaml

@@ -5,4 +5,22 @@ metadata:
     kyverno/clone: "true"
   name: staging-rabbitmq
 type: Opaque
+data:
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  annotations:
+    kyverno/clone: "true"
+  name: jonas-atlantis-env
+type: Opaque
+data:
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  annotations:
+    kyverno/clone: "true"
+  name: azure-keyvault
+type: Opaque
 data: