gerrit: add ref-updated hook to poke forgejo
This has been deployed already.
Technically depends on I26531818a395de2a8bb6054d2583881fd1d5b806 as this
has been deployed on top of that.
Change-Id: I1b8d453d04f3a9a5435ae0dd6575f82d9ca10db7
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1681
Reviewed-by: informatic <informatic@hackerspace.pl>
diff --git a/devtools/gerrit/kube/gerrit.libsonnet b/devtools/gerrit/kube/gerrit.libsonnet
index 35b4cc5..b5850a5 100644
--- a/devtools/gerrit/kube/gerrit.libsonnet
+++ b/devtools/gerrit/kube/gerrit.libsonnet
@@ -38,7 +38,7 @@
address: "gerrit@hackerspace.pl",
},
- tag: "3.3.2-r4",
+ tag: "3.7.5-r7",
image: "registry.k0.hswaw.net/q3k/gerrit:" + cfg.tag,
resources: {
requests: {
@@ -159,6 +159,12 @@
// SecureSecret gets mounted here
secure: { mountPath: "/var/gerrit-secure" },
},
+ keys: kube.Secret(gerrit.name("keys")) {
+ metadata+: gerrit.metadata("deployment"),
+ //data_: {
+ // FORGEJO_TOKEN: "fill me when deploying, TODO(q3k): god damn secrets",
+ //},
+ },
deployment: kube.Deployment(gerrit.name("gerrit")) {
metadata+: gerrit.metadata("deployment"),
spec+: {
@@ -182,6 +188,9 @@
http: { containerPort: 8080 },
ssh: { containerPort: 29418 },
},
+ env_: {
+ FORGEJO_TOKEN: { secretKeyRef: { name: gerrit.keys.metadata.name, key: "FORGEJO_TOKEN" }},
+ },
resources: cfg.resources,
volumeMounts_: volumeMounts,