From 675e3299a1838a06d3aa8b882ae3a712ddb0fec2 Mon Sep 17 00:00:00 2001 From: Jonas Juselius Date: Thu, 19 Dec 2024 19:26:27 +0100 Subject: [PATCH] fix: update openfga --- apps/prod-openfga.yaml | 39 ++++++++++++++++++++ apps/{openfga.yaml => staging-openfga.yaml} | 40 --------------------- values/openfga/postgres-secret.yaml | 4 +-- values/openfga/values-prod.yaml | 2 +- values/openfga/values-staging.yaml | 2 +- 5 files changed, 43 insertions(+), 44 deletions(-) create mode 100644 apps/prod-openfga.yaml rename apps/{openfga.yaml => staging-openfga.yaml} (50%) diff --git a/apps/prod-openfga.yaml b/apps/prod-openfga.yaml new file mode 100644 index 00000000..77a2c594 --- /dev/null +++ b/apps/prod-openfga.yaml @@ -0,0 +1,39 @@ +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: prod-openfga + namespace: argocd + annotations: + argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true + finalizers: + - resources-finalizer.argocd.argoproj.io +spec: + destination: + namespace: openfga + server: https://kubernetes.default.svc + project: aux + # ignoreDifferences: + # - group: apps + # kind: StatefulSet + # jsonPointers: + # - /spec/persistentVolumeClaimRetentionPolicy + syncPolicy: + managedNamespaceMetadata: + labels: + component: aux + syncOptions: + - CreateNamespace=true + - ApplyOutOfSyncOnly=true + automated: + prune: true + selfHeal: true + sources: + - repoURL: https://openfga.github.io/helm-charts + targetRevision: 0.2.19 + chart: openfga + helm: + valueFiles: + - $values/values/openfga/values-prod.yaml + - repoURL: https://gitlab.com/oceanbox/manifests.git + targetRevision: nixidy + ref: values diff --git a/apps/openfga.yaml b/apps/staging-openfga.yaml similarity index 50% rename from apps/openfga.yaml rename to apps/staging-openfga.yaml index bb2272b4..76dcd99e 100644 --- a/apps/openfga.yaml +++ b/apps/staging-openfga.yaml @@ -1,45 +1,5 @@ apiVersion: argoproj.io/v1alpha1 kind: Application -metadata: - name: prod-openfga - namespace: argocd - annotations: - argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true - finalizers: - - resources-finalizer.argocd.argoproj.io -spec: - destination: - namespace: openfga - server: https://kubernetes.default.svc - project: aux - # ignoreDifferences: - # - group: apps - # kind: StatefulSet - # jsonPointers: - # - /spec/persistentVolumeClaimRetentionPolicy - syncPolicy: - managedNamespaceMetadata: - labels: - component: aux - syncOptions: - - CreateNamespace=true - - ApplyOutOfSyncOnly=true - automated: - prune: true - selfHeal: true - sources: - - repoURL: https://openfga.github.io/helm-charts - targetRevision: 0.2.19 - chart: openfga - helm: - valueFiles: - - $values/values/openfga/values-prod.yaml - - repoURL: https://gitlab.com/oceanbox/manifests.git - targetRevision: nixidy - ref: values ---- -apiVersion: argoproj.io/v1alpha1 -kind: Application metadata: name: staging-openfga namespace: argocd diff --git a/values/openfga/postgres-secret.yaml b/values/openfga/postgres-secret.yaml index 8a6d2734..0a0ad2f7 100644 --- a/values/openfga/postgres-secret.yaml +++ b/values/openfga/postgres-secret.yaml @@ -10,8 +10,8 @@ type: Opaque --- apiVersion: v1 stringData: - postgres-password: tidings-guise-sternness-yummy - uri: postgres://postgres:tidings-guise-sternness-yummy@staging-openfga-rw.openfga.svc.cluster.local:5432/postgres?sslmode=disable + postgres-password: iAnMHs3eEuQM0D4jeAP1dwEoLWUBSwNXwhBuPDOgmfoeZ58iV0zogQ77U3GNUbwa + uri: postgres://postgres:iAnMHs3eEuQM0D4jeAP1dwEoLWUBSwNXwhBuPDOgmfoeZ58iV0zogQ77U3GNUbwa@staging-openfga-rw.openfga.svc.cluster.local:5432/postgres?sslmode=disable kind: Secret metadata: name: staging-openfga-postgresql diff --git a/values/openfga/values-prod.yaml b/values/openfga/values-prod.yaml index ef260f43..3b4e1e68 100644 --- a/values/openfga/values-prod.yaml +++ b/values/openfga/values-prod.yaml @@ -24,7 +24,7 @@ telemetry: sampleRatio: 0.1 ingress: - enabled: false + enabled: true className: nginx annotations: cert-manager.io/cluster-issuer: letsencrypt-staging diff --git a/values/openfga/values-staging.yaml b/values/openfga/values-staging.yaml index f3492340..690ba934 100644 --- a/values/openfga/values-staging.yaml +++ b/values/openfga/values-staging.yaml @@ -24,7 +24,7 @@ telemetry: sampleRatio: 0.1 ingress: - enabled: false + enabled: true className: nginx annotations: cert-manager.io/cluster-issuer: letsencrypt-staging