tegwick
6ddf4e56b4
Streamline bao.coulomb.social login as "Sign in with KeyCape" via a versioned nginx gateway that injects overlay assets and proxies to OpenBao. Disable chart ingress in favor of the overlay ingress, wire make openbao-deploy, and add openbao-verify-login-overlay with upstream drift detection.
15 lines
356 B
Plaintext
15 lines
356 B
Plaintext
# Decrypted helm values — never commit plaintext secrets
|
|
helm/*.yaml
|
|
!helm/*.sops.yaml
|
|
!helm/*.yaml.template
|
|
!helm/openbao-values.yaml
|
|
!helm/openbao-middleware.yaml
|
|
!helm/openbao-ui-overlay-k8s.yaml
|
|
# Kubernetes manifests (no secrets) are safe to commit
|
|
!helm/*-cluster.yaml
|
|
!helm/*-networkpolicies.yaml
|
|
!helm/*-databases.yaml
|
|
|
|
# Kubeconfig
|
|
*.kubeconfig
|