-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathTaskfile.yaml
65 lines (57 loc) · 2.12 KB
/
Taskfile.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
---
# yaml-language-server: $schema=https://taskfile.dev/schema.json
version: "3"
set: [pipefail]
shopt: [globstar]
vars:
BOOTSTRAP_DIR: "{{.ROOT_DIR}}/bootstrap"
KUBERNETES_DIR: "{{.ROOT_DIR}}/kubernetes"
SCRIPTS_DIR: "{{.ROOT_DIR}}/scripts"
BOOTSTRAP_CONFIG_FILE: "{{.ROOT_DIR}}/config.yaml"
MAKEJINJA_CONFIG_FILE: "{{.ROOT_DIR}}/makejinja.toml"
SOPS_CONFIG_FILE: "{{.ROOT_DIR}}/.sops.yaml"
env:
KUBECONFIG: "{{.ROOT_DIR}}/kubeconfig"
PYTHONDONTWRITEBYTECODE: "1"
SOPS_AGE_KEY_FILE: "{{.ROOT_DIR}}/age.key"
VIRTUAL_ENV: "{{.ROOT_DIR}}/.venv"
MINIJINJA_CONFIG_FILE: "{{.ROOT_DIR}}/.minijinja.toml"
includes:
bootstrap: .taskfiles/bootstrap
kubernetes: .taskfiles/kubernetes
talos: .taskfiles/talos
rook: .taskfiles/rook
volsync: .taskfiles/volsync
tasks:
default: task --list
init:
desc: Initialize configuration files
cmd: cp {{.BOOTSTRAP_CONFIG_FILE | replace ".yaml" ".sample.yaml"}} {{.BOOTSTRAP_CONFIG_FILE}}
status:
- test -f {{.BOOTSTRAP_CONFIG_FILE}}
configure:
desc: Render and validate configuration files
prompt: Any conflicting files in the kubernetes directory will be overwritten... continue?
cmds:
- task: bootstrap:template
- task: bootstrap:secrets
- task: kubernetes:kubeconform
- >
{{if eq .HOME_SOPS_AGE_KEY_FILE_EXISTS "true"}}
echo "WARNING: SOPS Age key found in home directory, this may cause conflicts."
{{end}}
vars:
HOME_SOPS_AGE_KEY_FILE_EXISTS:
sh: test -f ~/.config/sops/age/keys.txt && echo true || echo false
unlock:
desc: Unlock all restic source repos
preconditions:
- which kubectl
vars:
SOURCES:
sh: kubectl get replicationsources --all-namespaces --no-headers --output=jsonpath='{range .items[*]}{.metadata.namespace},{.metadata.name}{"\n"}{end}'
cmds:
- for:
var: SOURCES
split: "\n"
cmd: kubectl --namespace {{splitList "," .ITEM | first}} patch --field-manager=flux-client-side-apply replicationsources {{splitList "," .ITEM | last}} --type merge --patch "{\"spec\":{\"restic\":{\"unlock\":\"{{now | unixEpoch}}\"}}}"