From e857d0d7490f314c03004ffd5e68d22c17194174 Mon Sep 17 00:00:00 2001
From: Victor <victor@xirion.net>
Date: Wed, 18 May 2022 16:14:37 +0200
Subject: [PATCH] flux: prepare for renovate

---
 flux/cluster/apps/gitops/kustomization.yaml     |  4 ++++
 .../apps/gitops/renovate/external-secret.yaml   | 17 +++++++++++++++++
 .../apps/gitops/renovate/kustomization.yaml     |  4 ++++
 flux/cluster/apps/kustomization.yaml            |  3 ++-
 flux/cluster/core/namespaces/gitops.yaml        |  5 +++++
 flux/cluster/core/namespaces/kustomization.yaml |  1 +
 6 files changed, 33 insertions(+), 1 deletion(-)
 create mode 100644 flux/cluster/apps/gitops/kustomization.yaml
 create mode 100644 flux/cluster/apps/gitops/renovate/external-secret.yaml
 create mode 100644 flux/cluster/apps/gitops/renovate/kustomization.yaml
 create mode 100644 flux/cluster/core/namespaces/gitops.yaml

diff --git a/flux/cluster/apps/gitops/kustomization.yaml b/flux/cluster/apps/gitops/kustomization.yaml
new file mode 100644
index 0000000..4ddab70
--- /dev/null
+++ b/flux/cluster/apps/gitops/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - renovate
diff --git a/flux/cluster/apps/gitops/renovate/external-secret.yaml b/flux/cluster/apps/gitops/renovate/external-secret.yaml
new file mode 100644
index 0000000..fbf70f2
--- /dev/null
+++ b/flux/cluster/apps/gitops/renovate/external-secret.yaml
@@ -0,0 +1,17 @@
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
+metadata:
+  name: authentik
+  namespace: gitops
+spec:
+  refreshInterval: "5m"
+  secretStoreRef:
+    name: vault
+    kind: ClusterSecretStore
+  target:
+    name: authentik
+  data:
+  - secretKey: RENOVATE_TOKEN
+    remoteRef:
+      key: gitops/renovate
+      property: gitea_token
diff --git a/flux/cluster/apps/gitops/renovate/kustomization.yaml b/flux/cluster/apps/gitops/renovate/kustomization.yaml
new file mode 100644
index 0000000..020b751
--- /dev/null
+++ b/flux/cluster/apps/gitops/renovate/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - external-secret.yaml
diff --git a/flux/cluster/apps/kustomization.yaml b/flux/cluster/apps/kustomization.yaml
index 190001b..3f6840a 100644
--- a/flux/cluster/apps/kustomization.yaml
+++ b/flux/cluster/apps/kustomization.yaml
@@ -3,4 +3,5 @@ kind: Kustomization
 resources:
   - networking
   - presidential-paradise
-  - authentik
\ No newline at end of file
+  - authentik
+  - gitops
diff --git a/flux/cluster/core/namespaces/gitops.yaml b/flux/cluster/core/namespaces/gitops.yaml
new file mode 100644
index 0000000..4ac5db7
--- /dev/null
+++ b/flux/cluster/core/namespaces/gitops.yaml
@@ -0,0 +1,5 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: gitops
diff --git a/flux/cluster/core/namespaces/kustomization.yaml b/flux/cluster/core/namespaces/kustomization.yaml
index 753e131..fcca7cf 100644
--- a/flux/cluster/core/namespaces/kustomization.yaml
+++ b/flux/cluster/core/namespaces/kustomization.yaml
@@ -5,4 +5,5 @@ resources:
   - networking.yaml
   - external-secrets.yaml
   - authentik.yaml
+  - gitops.yaml