admin/stonks-oracle
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ci: sync esnixi changes - CA download, dockerhub auth, local-path storage, proxy exclusions, pod annotations

Browse Source
This commit is contained in:
Celes Renata
2026-04-19 05:14:13 +00:00
parent dba79b1dae
commit 00a6485e70
9 changed files with 143 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pipelines/woodpecker/values.yaml
+6 -1
View File
@@ -48,7 +48,10 @@ agent:
enabled: true
replicaCount: 2
# CA injection handled by woodpecker-proxy-ca Kyverno policy (matches all pods in namespace)
# Agents must NOT have proxy/CA injection — they communicate with server via gRPC
# and the proxy blocks port 9000. Builder pods get injection via Kyverno policy
# matching WOODPECKER_BACKEND_K8S_POD_ANNOTATIONS.
podAnnotations: {}
env:
WOODPECKER_SERVER: "woodpecker-server:9000"
@@ -56,4 +59,6 @@ agent:
WOODPECKER_BACKEND_K8S_NAMESPACE: woodpecker
WOODPECKER_BACKEND_K8S_VOLUME_SIZE: 5Gi
WOODPECKER_BACKEND_K8S_STORAGE_RWX: "false"
WOODPECKER_BACKEND_K8S_STORAGE_CLASS: local-path
WOODPECKER_BACKEND_K8S_POD_ANNOTATIONS: "celestium.life/inject-ca:true"
WOODPECKER_MAX_WORKFLOWS: "16"