Got rid of authentik secret

2025-12-03 17:14:28 +02:00
parent 5c886d7604
commit a2114327cf
3 changed files with 16 additions and 2 deletions
--- a/.gitea/workflows/authentik-apps.yaml
+++ b/.gitea/workflows/authentik-apps.yaml
@@ -30,21 +30,29 @@ jobs:
        cli_config_credentials_token: ${{ secrets.TF_API_TOKEN }}
    - name: Terraform Init
      env:
        TF_VAR_authentik_token: ${{ secrets.AUTHENTIK_TOKEN }}
      run: terraform init
      working-directory: ./terraform/authentik
    - name: Terraform Format
      env:
        TF_VAR_authentik_token: ${{ secrets.AUTHENTIK_TOKEN }}
      run: terraform fmt -check
      continue-on-error: true
      working-directory: ./terraform/authentik
    - name: Terraform Apply
      env:
        TF_VAR_authentik_token: ${{ secrets.AUTHENTIK_TOKEN }}
      run: terraform apply -var-file proxy-apps.tfvars -var-file oauth2-apps.tfvars -var-file terraform.tfvars -var-file groups.tfvars -input=false -auto-approve -parallelism=100
      working-directory: ./terraform/authentik
    - name: Generate Wiki Content  
      if: success()
      continue-on-error: true
      env:
        TF_VAR_authentik_token: ${{ secrets.AUTHENTIK_TOKEN }}
      run: |
        echo "📋 Starting Wiki generation..."
        cd ./terraform/authentik
--- a/terraform/authentik/providers.tf
+++ b/terraform/authentik/providers.tf
@@ -8,6 +8,6 @@ terraform {
 }
 provider "authentik" {
-  url   = "https://idm.hexor.cy"
+  url   = var.authentik_url
-  token = "qXcuoCg77JaRgqnU6rqIIBa8MBJ4UNyLPTL89dZI8zeC2jfaWqQ7k56BJs8F"
+  token = var.authentik_token
 }
--- a/terraform/authentik/variables.tf
+++ b/terraform/authentik/variables.tf
@@ -166,3 +166,9 @@ variable "authentik_url" {
  type        = string
  default     = "https://idm.hexor.cy"
 }
 variable "authentik_token" {
  description = "Authentik API token (set via TF_VAR_authentik_token env var)"
  type        = string
  sensitive   = true
 }