feat(renovate-operator): Fix ratelimits
This commit is contained in:
parent
26d989fc03
commit
3d7580dc3a
SSH key fingerprint:
SHA256:B5tYaxBExaDm74r1px9iVeZ6F/ZDiyiy9SbBqfZYrvg
5 changed files with 58 additions and 0 deletions
22
k8s-peterg/renovate-operator/configmap.yaml
Normal file
22
k8s-peterg/renovate-operator/configmap.yaml
Normal file
|
|
@ -0,0 +1,22 @@
|
||||||
|
---
|
||||||
|
apiVersion: v1
|
||||||
|
kind: ConfigMap
|
||||||
|
metadata:
|
||||||
|
name: renovate-config
|
||||||
|
namespace: renovate-operator
|
||||||
|
data:
|
||||||
|
config.json: |-
|
||||||
|
{
|
||||||
|
"hostRules": [
|
||||||
|
{
|
||||||
|
"matchHost": "docker.io",
|
||||||
|
"username": "{{ env.DOCKER_USERNAME}}",
|
||||||
|
"password": "{{ env.DOCKER_TOKEN }}"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"matchHost": "registry-1.docker.io",
|
||||||
|
"username": "{{ env.DOCKER_USERNAME}}",
|
||||||
|
"password": "{{ env.DOCKER_TOKEN }}"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
|
|
@ -4,6 +4,7 @@ kind: Kustomization
|
||||||
namespace: renovate-operator
|
namespace: renovate-operator
|
||||||
|
|
||||||
resources:
|
resources:
|
||||||
|
- configmap.yaml
|
||||||
- namespace.yaml
|
- namespace.yaml
|
||||||
# - policies.yaml
|
# - policies.yaml
|
||||||
- renovate-job.yaml
|
- renovate-job.yaml
|
||||||
|
|
|
||||||
|
|
@ -13,6 +13,13 @@ spec:
|
||||||
secretRef: renovate-operator-secrets
|
secretRef: renovate-operator-secrets
|
||||||
parallelism: 1
|
parallelism: 1
|
||||||
skipForks: true
|
skipForks: true
|
||||||
|
extraVolumes:
|
||||||
|
- name: renovate-config
|
||||||
|
configMap:
|
||||||
|
name: renovate-config
|
||||||
|
extraVolumeMounts:
|
||||||
|
- name: renovate-config
|
||||||
|
mountPath: /opt/renovate
|
||||||
extraEnv:
|
extraEnv:
|
||||||
- name: LOG_LEVEL
|
- name: LOG_LEVEL
|
||||||
value: debug
|
value: debug
|
||||||
|
|
@ -22,3 +29,5 @@ spec:
|
||||||
value: "true"
|
value: "true"
|
||||||
- name: RENOVATE_GIT_AUTHOR
|
- name: RENOVATE_GIT_AUTHOR
|
||||||
value: "Renovate <renovate@peterg.nl>"
|
value: "Renovate <renovate@peterg.nl>"
|
||||||
|
- name: RENOVATE_CONFIG_FILE
|
||||||
|
value: /opt/renovate/config.json
|
||||||
|
|
|
||||||
|
|
@ -20,3 +20,25 @@ spec:
|
||||||
remoteRef:
|
remoteRef:
|
||||||
key: /secrets/managed/renovate/token
|
key: /secrets/managed/renovate/token
|
||||||
property: GITHUB_COM_TOKEN
|
property: GITHUB_COM_TOKEN
|
||||||
|
---
|
||||||
|
apiVersion: external-secrets.io/v1
|
||||||
|
kind: ExternalSecret
|
||||||
|
metadata:
|
||||||
|
name: renovate-operator-docker-login
|
||||||
|
namespace: renovate-operator
|
||||||
|
spec:
|
||||||
|
refreshInterval: "15s"
|
||||||
|
secretStoreRef:
|
||||||
|
name: vault-wheatley
|
||||||
|
kind: ClusterSecretStore
|
||||||
|
target:
|
||||||
|
name: renovate-operator-docker-login
|
||||||
|
data:
|
||||||
|
- secretKey: DOCKER_USERNAME
|
||||||
|
remoteRef:
|
||||||
|
key: /secrets/managed/renovate/docker
|
||||||
|
property: DOCKER_USERNAME
|
||||||
|
- secretKey: DOCKER_TOKEN
|
||||||
|
remoteRef:
|
||||||
|
key: /secrets/managed/renovate/docker
|
||||||
|
property: DOCKER_PASSWORD
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,10 @@ metrics:
|
||||||
serviceMonitor:
|
serviceMonitor:
|
||||||
enabled: false
|
enabled: false
|
||||||
|
|
||||||
|
image:
|
||||||
|
imagePullSecrets:
|
||||||
|
- name: renovate-operator-docker-login
|
||||||
|
|
||||||
route:
|
route:
|
||||||
enabled: true
|
enabled: true
|
||||||
hostnames:
|
hostnames:
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue