-
Notifications
You must be signed in to change notification settings - Fork 1
/
.config.env
60 lines (46 loc) · 2.44 KB
/
.config.env
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
#
# Bootstrap cluster related variables
#
# The repo you created from this template
export BOOTSTRAP_GIT_REPOSITORY="https://github.com/omdv/homelab-server"
# ARGO admin password
export BOOTSTRAP_ARGO_ADMIN_PASSWORD="$(gopass show homelab/argocd/pass)"
# Age Public Key - string should start with age
# e.g. age15uzrw396e67z9wdzsxzdk7ka0g2gr3l460e0slaea563zll3hdfqwqxdta
export BOOTSTRAP_AGE_PUBLIC_KEY="age1k30whteuhd93qd9sgcrnj2cur0dz5dgtj7vyhsc2hjeph0u3p97s70v7lg"
#
# This variables will be injected into vault
#
# Inject OAUTH settings
# e.g https://kubernetes.github.io/ingress-nginx/examples/auth/oauth-external-auth/#example-oauth2-proxy-kubernetes-dashboard
export VAULT_OAUTH2_CLIENT_ID="$(gopass show homelab/oauth2/client_id)"
export VAULT_OAUTH2_CLIENT_SECRET="$(gopass show homelab/oauth2/client_secret)"
export VAULT_OAUTH2_COOKIE_SECRET="$(gopass show homelab/oauth2/cookie_secret)"
export VAULT_OAUTH2_EMAIL_WHITELIST="$(gopass show homelab/oauth2/whitelist)"
# NAMECHEAP password for dynamic dns update
export VAULT_DYNDNS_NAMECHEAP_PASSWORD="$(gopass show homelab/namecheap/dns_pass)"
export VAULT_DYNDNS_NAMECHEAP_DOMAIN="${HOMELAB_DOMAIN}"
# DB settings
export VAULT_POSTGRES_PASSWORD="$(gopass show homelab/postgres/pass)"
export VAULT_MONGODB_PASSWORD="$(gopass show homelab/mongodb/pass)"
# WIREGUARD Mullvad config
export VAULT_WIREGUARD_PRIVATE_KEY="$(gopass show homelab/wireguard/private_key)"
export VAULT_WIREGUARD_ADDRESSES="$(gopass show homelab/wireguard/address)"
# Samba user/pass
export VAULT_SAMBA_USER="$(gopass show homelab/samba/user)"
export VAULT_SAMBA_PASSWORD="$(gopass show homelab/samba/pass)"
# Cloudflare setup
export VAULT_CLOUDFLARE_DOMAIN="${HOMELAB_DOMAIN}"
export VAULT_CLOUDFLARE_API_TOKEN="$(gopass show homelab/cloudflare/api_token)"
# iCloudpd
export VAULT_ICLOUDPD_USER_OM="$(gopass show homelab/icloudpd/apple_user_om)"
# Telegram bot
export VAULT_TELEGRAM_TOKEN="$(gopass show homelab/telegram/token)"
export VAULT_TELEGRAM_CHAT_ID="$(gopass show homelab/telegram/chat_id)"
# Tailscale operator
export VAULT_TAILSCALE_K8S_CLIENT_ID="$(gopass show homelab/tailscale/k8s_client_id)"
export VAULT_TAILSCALE_K8S_CLIENT_SECRET="$(gopass show homelab/tailscale/k8s_client_secret)"
# # MLFlow AWS keys
# export AWS_STORAGE_ACCESS_KEY="$(gopass show api/AWS/storage/access-key)"
# export AWS_STORAGE_SECRET_KEY="$(gopass show api/AWS/storage/secret-key)"
# export MLFLOW_S3_BUCKET_NAME="$(gopass show homelab/mlflow/s3-bucket-name)"