Add all Authelia secrets to Woodpecker CI pipeline

2025-06-04 16:34:09 -04:00 · 2025-06-04 16:34:09 -04:00 · 603f5e3d03
parent 566d11154d
commit 603f5e3d03
1 changed files with 92 additions and 0 deletions
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@ -23,6 +23,29 @@ steps:
        from_secret: DOCKER_REGISTRY_USER
      DOCKER_REGISTRY_PASSWORD:
        from_secret: DOCKER_REGISTRY_PASSWORD
+      # Authelia Core Secrets
+      AUTHENTICATION_BACKEND_LDAP_PASSWORD:
+        from_secret: AUTHENTICATION_BACKEND_LDAP_PASSWORD
+      IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET:
+        from_secret: IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET
+      STORAGE_ENCRYPTION_KEY:
+        from_secret: STORAGE_ENCRYPTION_KEY
+      SESSION_SECRET:
+        from_secret: SESSION_SECRET
+      NOTIFIER_SMTP_PASSWORD:
+        from_secret: NOTIFIER_SMTP_PASSWORD
+      # OIDC Secrets
+      IDENTITY_PROVIDERS_OIDC_HMAC_SECRET:
+        from_secret: IDENTITY_PROVIDERS_OIDC_HMAC_SECRET
+      IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
+      IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
+      # Client Secrets
+      CLIENT_SECRET_HEADSCALE:
+        from_secret: CLIENT_SECRET_HEADSCALE
+      CLIENT_SECRET_HEADADMIN:
+        from_secret: CLIENT_SECRET_HEADADMIN
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    commands:
@ -45,6 +68,29 @@ steps:
        from_secret: REGISTRY_USER
      REGISTRY_PASSWORD:
        from_secret: REGISTRY_PASSWORD
+      # Authelia Core Secrets
+      AUTHENTICATION_BACKEND_LDAP_PASSWORD:
+        from_secret: AUTHENTICATION_BACKEND_LDAP_PASSWORD
+      IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET:
+        from_secret: IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET
+      STORAGE_ENCRYPTION_KEY:
+        from_secret: STORAGE_ENCRYPTION_KEY
+      SESSION_SECRET:
+        from_secret: SESSION_SECRET
+      NOTIFIER_SMTP_PASSWORD:
+        from_secret: NOTIFIER_SMTP_PASSWORD
+      # OIDC Secrets
+      IDENTITY_PROVIDERS_OIDC_HMAC_SECRET:
+        from_secret: IDENTITY_PROVIDERS_OIDC_HMAC_SECRET
+      IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
+      IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
+      # Client Secrets
+      CLIENT_SECRET_HEADSCALE:
+        from_secret: CLIENT_SECRET_HEADSCALE
+      CLIENT_SECRET_HEADADMIN:
+        from_secret: CLIENT_SECRET_HEADADMIN
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    commands:
@ -88,6 +134,29 @@ steps:
        from_secret: DOCKER_REGISTRY_USER
      DOCKER_REGISTRY_PASSWORD:
        from_secret: DOCKER_REGISTRY_PASSWORD
+      # Authelia Core Secrets
+      AUTHENTICATION_BACKEND_LDAP_PASSWORD:
+        from_secret: AUTHENTICATION_BACKEND_LDAP_PASSWORD
+      IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET:
+        from_secret: IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET
+      STORAGE_ENCRYPTION_KEY:
+        from_secret: STORAGE_ENCRYPTION_KEY
+      SESSION_SECRET:
+        from_secret: SESSION_SECRET
+      NOTIFIER_SMTP_PASSWORD:
+        from_secret: NOTIFIER_SMTP_PASSWORD
+      # OIDC Secrets
+      IDENTITY_PROVIDERS_OIDC_HMAC_SECRET:
+        from_secret: IDENTITY_PROVIDERS_OIDC_HMAC_SECRET
+      IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
+      IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
+      # Client Secrets
+      CLIENT_SECRET_HEADSCALE:
+        from_secret: CLIENT_SECRET_HEADSCALE
+      CLIENT_SECRET_HEADADMIN:
+        from_secret: CLIENT_SECRET_HEADADMIN
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    commands:
@ -110,6 +179,29 @@ steps:
        from_secret: REGISTRY_USER
      REGISTRY_PASSWORD:
        from_secret: REGISTRY_PASSWORD
+      # Authelia Core Secrets
+      AUTHENTICATION_BACKEND_LDAP_PASSWORD:
+        from_secret: AUTHENTICATION_BACKEND_LDAP_PASSWORD
+      IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET:
+        from_secret: IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET
+      STORAGE_ENCRYPTION_KEY:
+        from_secret: STORAGE_ENCRYPTION_KEY
+      SESSION_SECRET:
+        from_secret: SESSION_SECRET
+      NOTIFIER_SMTP_PASSWORD:
+        from_secret: NOTIFIER_SMTP_PASSWORD
+      # OIDC Secrets
+      IDENTITY_PROVIDERS_OIDC_HMAC_SECRET:
+        from_secret: IDENTITY_PROVIDERS_OIDC_HMAC_SECRET
+      IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
+      IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
+        from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
+      # Client Secrets
+      CLIENT_SECRET_HEADSCALE:
+        from_secret: CLIENT_SECRET_HEADSCALE
+      CLIENT_SECRET_HEADADMIN:
+        from_secret: CLIENT_SECRET_HEADADMIN
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    commands: