6 Commits

Author	SHA1	Message	Date
Adrian A. Baumann	271fec8da5	fix: add JWT_SECRET_KEY to migrate init container; run postgres as uid 70 to avoid NFS chown failure	2026-02-28 23:53:03 +01:00
Adrian A. Baumann	84fd1c8072	feat: complete Gitea Actions CI workflow for container builds ... - Fix trigger/env path: Helm/ -> helm/ (was wrong case) - Add image_yq_path and dockerfile to matrix so each container uses its own values.yaml key and Dockerfile path - Fix yq paths: .django.image.* -> .frontend.image/.backend.image for repo, .containers.version for tag (single source of truth) - Add file: param to docker/build-push-action (Dockerfiles are in frontend/ and backend/, not repo root) - values.yaml: add registry prefix to image fields so k8s pulls from git.baumann.gr; quote containers.version; drop per-component tag fields (containers.version is now the single tag source) - Deployment templates: use .containers.version for image tag Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-28 23:26:00 +01:00
Adrian A. Baumann	cf837fb994	fix: add kubectl preflight check and clarify repo-root usage in comment ... Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-28 23:16:51 +01:00
Adrian A. Baumann	3278ef63b3	feat: remove secrets block from Helm values ... Remove the secrets: block from values.yaml so no plaintext credentials live in the chart or git history. Update values-prod.yaml to replace the --set secrets.* instructions with a pointer to the create-secrets.sh script.	2026-02-28 23:10:39 +01:00
Adrian A. Baumann	a8e30fa7c4	feat: remove Helm-managed Secret template ... Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-28 22:47:57 +01:00
Adrian A. Baumann	be64d0bffd	feat: add Helm charts for Kubernetes deployment (Traefik + NFS Postgres)	2026-02-28 21:19:50 +01:00