Cleanup credentials and db use

2025-05-25 18:01:47 +10:00
parent ffbd240453
commit 376c278c11
5 changed files with 44 additions and 13 deletions
--- a/2-nomad-config/gitea.tf
+++ b/2-nomad-config/gitea.tf
@@ -18,12 +18,13 @@ resource "nomad_variable" "gitea" {
  items = {
    internal_token = data.sops_file.secrets.data["gitea.internal_token"]
    jwt_secret     = data.sops_file.secrets.data["gitea.jwt_secret"]
+    database_pw    = data.sops_file.secrets.data["gitea.database_pw"]
  }
 }

 resource "postgresql_role" "gitea" {
  name     = "gitea"
-  password = "gitea"
+  password = data.sops_file.secrets.data["gitea.database_pw"]
  login    = true
 }