old-portfolio/terraform-hideyoshi.com
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: adds encryption key for kubernetes secrets

Browse Source
This commit is contained in:
Vitor Hideyoshi
2025-11-07 15:05:24 -03:00
parent 54d03136d4
commit a926eccff5
4 changed files with 28 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
github/config.tf
View File

@@ -14,4 +14,9 @@ variable "github_repositories" {
variable "cluster_kubeconfig" {
type = string
sensitive = true
}
variable "gpg_public_key_encryption" {
type = string
sensitive = true
}

7
github/github.tf
View File

@@ -18,4 +18,11 @@ resource "github_actions_organization_secret" "cluster_kubeconfig" {
selected_repository_ids = [for repo in data.github_repository.repos : repo.repo_id]
secret_name = "PORTFOLIO_KUBECONFIG"
plaintext_value = chomp(var.cluster_kubeconfig)
}
resource "github_actions_organization_secret" "gpg_public_key" {
visibility = "selected"
selected_repository_ids = [for repo in data.github_repository.repos : repo.repo_id]
secret_name = "PORTFOLIO_GPG_PUBLIC_KEY"
plaintext_value = chomp(var.gpg_public_key_encryption)
}