a9e006a250
Skip SSH host key verification via insecure: "true" in the repository secret. This avoids the chicken-and-egg problem where ArgoCD syncs its own known hosts ConfigMap and overwrites runtime patches. Remove configmaps RBAC and ssh-keyscan logic from the init job. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
16 lines
323 B
YAML
16 lines
323 B
YAML
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRole
|
|
metadata:
|
|
annotations:
|
|
a8r.io/repository: ssh://git@git.tr1ceracop.de:222/gitea_admin/k8s-and-chill.git
|
|
name: argocd-deploy-key-init
|
|
namespace: forgejo
|
|
rules:
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- secrets
|
|
verbs:
|
|
- get
|
|
- create
|