Skip to content
/ don-infra Public

This repository contains all Kubernetes manifests for developer.overheid.nl.

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

developer-overheid-nl/don-infra

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

43 Commits
apps
apps
 
 
README.md
README.md
 
 

Repository files navigation

DON Infra

This repository contains all Kubernetes manifests for developer.overheid.nl.

Applications

The project is divided into multiple applications:

Connect to Postgres DB

Connect to the Kubernetes cluster and start a port-forward for the pgAdmin service:

kubectl port-forward svc/don-community-pgadmin-pgadmin4 8888:80 -n tn-don-community

Open the pgAdmin UI: http://localhost:8888 (sign in with: [email protected] / SuperSecret)

SOPS public keys

All secrets are encrypted with SOPS, using the following public keys:

  • api: age17uzpswwz9g0frdfy7md5kvlvkcw6pkd9k3k2cad6mfe0zdvcm9pscyzd7v
  • community: age122ph8qunemp7hz9hughd3nx65dlef4dcqu79c6psyn8se377w5hq486cdw
  • frontend: age17n4n96sqw3rx7a5exuqascs69h8d3wux0746xvldae3x7kv4zu8q5m75pe
  • static: age12k87tkhgdr7s309k6rcpss9x8df62tw9v0haxswtzd2mwr6jwacs858ac2

Creating secrets

Create a template file for a secret:

kubectl -n default create secret generic <SECRET> \
--from-literal=<KEY>=<VALUE> \
--dry-run=client \
-o yaml > <SECRET>.yaml

Encrypt:

sops \
  --encrypt \
  --encrypted-regex '^(data|stringData)$' \
  --age <PUBLIC KEY> \
  --in-place \
  <SECRET>.yaml

About

This repository contains all Kubernetes manifests for developer.overheid.nl.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •