create existing secret for ci-singleNode

Ubuntu · Ubuntu · commit 46f726496209 · 2024-05-22T07:33:41.000Z
diff --git a/.bin/disableLdapPort.yaml b/.bin/disableLdapPort.yaml
@@ -16,10 +16,4 @@ service:
   sslLdapPortNodePort: 30636
   type: NodePort
 initTLSSecret:
-  tls_enabled: true
-  image:
-    registry: docker.io
-    repository: alpine/openssl
-    tag: latest
-    pullPolicy: IfNotPresent
-  secret: "custom-cert"
+  tls_enabled: false
diff --git a/.bin/singleNode.yaml b/.bin/singleNode.yaml
@@ -9,51 +9,10 @@ resources:
 replicaCount: 1
 replication:
   enabled: false
-# customLdifFiles:
-#   0-root.ldif: |-
-#     dn: dc=singlenode,dc=org
-#     objectClass: top
-#     objectClass: dcObject
-#     objectClass: organization
-#     o: MY-DOMAIN
-#     dc: singlenode
-#   02-users-group.ldif: |-
-#     dn: ou=users,dc=singlenode,dc=org
-#     ou: users
-#     objectClass: organizationalUnit
-#     objectClass: top
-#   01-admin-read-user.ldif: |-
-#     dn: cn=admin-read,dc=singlenode,dc=org
-#     cn: admin-read
-#     mail: admin-read@singlenode.org
-#     objectClass: inetOrgPerson
-#     objectClass: top
-#     userPassword: {SSHA}E2vRX2ssn7ckfjXBzP27SZH9Ast4rOEo
-#     sn: Admin read only
-# customAcls: |-
-#   dn: olcDatabase={2}mdb,cn=config
-#   changetype: modify
-#   replace: olcAccess
-#   olcAccess: {0}to *
-#     by dn.exact=gidNumber=0+uidNumber=1001,cn=peercred,cn=external,cn=auth manage
-#     by * break
-#   olcAccess: {1}to attrs=userPassword,shadowLastChange
-#     by self write
-#     by dn="cn=admin,dc=singlenode,dc=org" write
-#     by anonymous auth by * none
-#   olcAccess: {2}to *
-#     by dn="cn=admin-read,dc=singlenode,dc=org" read
-#     by dn="cn=admin,dc=singlenode,dc=org" write
-#     by self read
-#     by * none
 ltb-passwd:
   ingress:
     hosts:
     - "ssl-ldap2.example"
-  # ldap:
-  #   searchBase: "ou=users,dc=singlenode,dc=org"
-  #   bindDN: "cn=admin-read,dc=singlenode,dc=org"
-  #   passKey: LDAP_ADMIN_READ_PASSWORD
 phpldapadmin:
   ingress:
     hosts:
diff --git a/.github/workflows/ci-other.yml b/.github/workflows/ci-other.yml
@@ -17,7 +17,6 @@ jobs:
       run: |
         cd "$GITHUB_WORKSPACE"
         helm install openldap-stack-ha -n no-ldap-port --create-namespace -f .bin/disableLdapPort.yaml .
-        kubectl -n no-ldap-port create secret generic custom-cert --from-file=./tls.crt --from-file=./tls.key --from-file=./ca.crt
         kubectl -n no-ldap-port rollout status sts openldap-stack-ha -n no-ldap-port
     - name: verify no ldap port deployment
       shell: bash
diff --git a/.github/workflows/ci-singlenode.yml b/.github/workflows/ci-singlenode.yml
@@ -16,8 +16,9 @@ jobs:
         shell: bash
         run: |
           cd "$GITHUB_WORKSPACE"
-          helm install openldap-stack-ha -n single --create-namespace -f .bin/singleNode.yaml .
+          kubectl create ns single
           kubectl create secret generic my-super-secret -n single --from-literal=LDAP_ADMIN_PASSWORD=Not@SecurePassw0rd --from-literal=LDAP_CONFIG_ADMIN_PASSWORD=Not@SecurePassw0rd
+          helm install openldap-stack-ha -n single -f .bin/singleNode.yaml .
           kubectl rollout status sts openldap-stack-ha -n single
       - name: verify single node deployment
         shell: bash
