gitea_admin/k8s-and-chill
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
k8s-and-chill/rendered/envs/production/cert-manager
History
Felix Wolf c7bfd4953c feat: Wire ArgoCD to Forgejo for GitOps management 
Configure myks with global repoURL pointing to Forgejo, in-cluster
destination, and disabled placeholder cluster Secret. Implement App of
Apps pattern with a root Application that syncs all child apps.

Add argocd-deploy-key-init Job that generates an ed25519 SSH keypair,
registers it as a deploy key via Forgejo API, and creates the ArgoCD
repository secret with insecure host key verification (avoids
chicken-and-egg with ArgoCD managing its own known hosts ConfigMap).

Additional changes:
- Ignore /status field diffs globally (K8s 1.32 compat)
- Add Replace=true sync option on Jobs (immutable resource compat)
- Switch job images from bitnami/kubectl to alpine/k8s
- Update CLAUDE.md with ArgoCD status and no-bitnami rule

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-30 23:09:50 +02:00
..
clusterissuer-letsencrypt.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-cainjector.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-cluster-view.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-approve_cert-manager-io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-certificates.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-certificatesigningrequests.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-challenges.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-clusterissuers.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-ingress-shim.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-issuers.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-controller-orders.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-edit.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-view.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrole-cert-manager-webhook_subjectaccessreviews.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-cainjector.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-approve_cert-manager-io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-certificates.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-certificatesigningrequests.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-challenges.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-clusterissuers.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-ingress-shim.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-issuers.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-controller-orders.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
clusterrolebinding-cert-manager-webhook_subjectaccessreviews.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-certificaterequests.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-certificates.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-challenges.acme.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-clusterissuers.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-issuers.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
customresourcedefinition-orders.acme.cert-manager.io.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
deployment-cert-manager-cainjector.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
deployment-cert-manager-webhook.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
deployment-cert-manager.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
job-cert-manager-startupapicheck.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
mutatingwebhookconfiguration-cert-manager-webhook.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
namespace-cert-manager.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
role-cert-manager-cainjector_leaderelection.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
role-cert-manager-startupapicheck_create-cert.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
role-cert-manager-tokenrequest.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
role-cert-manager-webhook_dynamic-serving.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
role-cert-manager_leaderelection.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
rolebinding-cert-manager-cainjector_leaderelection.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
rolebinding-cert-manager-cert-manager-tokenrequest.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
rolebinding-cert-manager-startupapicheck_create-cert.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
rolebinding-cert-manager-webhook_dynamic-serving.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
rolebinding-cert-manager_leaderelection.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
service-cert-manager-cainjector.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
service-cert-manager-webhook.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
service-cert-manager.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
serviceaccount-cert-manager-cainjector.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
serviceaccount-cert-manager-startupapicheck.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
serviceaccount-cert-manager-webhook.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
serviceaccount-cert-manager.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00
validatingwebhookconfiguration-cert-manager-webhook.yaml feat: Wire ArgoCD to Forgejo for GitOps management 2026-03-30 23:09:50 +02:00