From fd2d7575044a3d419ef376fa4891ef5d2d00a873 Mon Sep 17 00:00:00 2001 From: Jonas Juselius Date: Wed, 19 Jun 2024 10:55:03 +0200 Subject: [PATCH] fix: modify the source rabbitmq secret before clone --- .../host-manifests/sync-rabbitmq-secrets.yaml | 37 ++++++++----------- 1 file changed, 15 insertions(+), 22 deletions(-) diff --git a/resources/atlantis/host-manifests/sync-rabbitmq-secrets.yaml b/resources/atlantis/host-manifests/sync-rabbitmq-secrets.yaml index aa7f5354..79e33d5d 100644 --- a/resources/atlantis/host-manifests/sync-rabbitmq-secrets.yaml +++ b/resources/atlantis/host-manifests/sync-rabbitmq-secrets.yaml @@ -6,6 +6,21 @@ spec: background: true generateExisting: true rules: + - name: add-rabbitmq-connstring + mutate: + patchStrategicMerge: + stringData: + connString: 'amqp://user:{{ request.object.data."rabbitmq-password" | base64_decode(@) }}@{{ request.object.metadata.labels."app.kubernetes.io/instance" }}.rabbitmq.svc' + match: + any: + - resources: + kinds: + - Secret + names: + - prod-rabbitmq + - staging-rabbitmq + namespaces: + - rabbitmq - name: sync-prod-rabbitmq-secret generate: apiVersion: v1 @@ -56,25 +71,3 @@ spec: selector: matchLabels: generate.kyverno.io/clone-source: "" - - name: add-rabbitmq-connstring - mutate: - patchStrategicMerge: - stringData: - connString: 'amqp://user:{{ request.object.data."rabbitmq-password" | base64_decode(@) }}@{{ request.object.metadata.labels."app.kubernetes.io/instance" }}.rabbitmq.svc' - match: - any: - - resources: - kinds: - - Secret - names: - - prod-rabbitmq - - staging-rabbitmq - operations: - - UPDATE - exclude: - any: - - resources: - kinds: - - Namespace - names: - - rabbitmq