ec51d2f8d8
Build and push CoqDecks / build (push) Failing after 10m31s
Update server and client to use images from the local registry built by the ManyCoqDecks CI pipeline (adds local username/password auth). Update secrets.example.yaml with local auth config instructions. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
36 lines
1.1 KiB
YAML
36 lines
1.1 KiB
YAML
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: manydecks-secrets
|
|
namespace: jeux # adjust to match your namespace
|
|
stringData:
|
|
postgres-password: "CHANGE_ME_DB_PASSWORD"
|
|
config.json5: |
|
|
{
|
|
listenOn: 8083,
|
|
connection: {
|
|
host: "postgres-main-rw.sql.svc.cluster.local",
|
|
port: 5432,
|
|
user: "manydecks",
|
|
database: "manydecks",
|
|
password: "CHANGE_ME_DB_PASSWORD",
|
|
keepAlive: false,
|
|
},
|
|
auth: {
|
|
local: {
|
|
// Unique identifier for this server — use your domain.
|
|
issuer: "decks.jeux.alocoq.fr",
|
|
// Random string used to sign JWT tokens. Generate with:
|
|
// openssl rand -base64 48
|
|
secret: "CHANGE_ME_JWT_SECRET",
|
|
algorithm: "HS256",
|
|
expiresIn: "3h",
|
|
// Local auth: set username and a bcrypt password hash.
|
|
// Generate hash with: htpasswd -bnBC 12 "" YOUR_PASSWORD | tr -d ':\n' | sed 's/$2y/$2a/'
|
|
// or in Node: require('bcryptjs').hashSync('YOUR_PASSWORD', 12)
|
|
username: "CHANGE_ME_USERNAME",
|
|
password: "CHANGE_ME_BCRYPT_HASH",
|
|
},
|
|
},
|
|
}
|