wbyc/terraform-docker-renovate
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Add missing RENOVATE_USERNAME environment variable
All checks were successful
Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s
Details
Code Quality & Security Scan / TFLint (push) Successful in 19s
Details
Code Quality & Security Scan / Terraform Destroy (push) Has been skipped
Details
Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 24s
Details
Code Quality & Security Scan / Checkov Security Scan (push) Successful in 35s
Details
Code Quality & Security Scan / Terraform Validate (push) Successful in 39s
Details
Code Quality & Security Scan / Terraform Plan (push) Successful in 1m21s
Details
Code Quality & Security Scan / Terraform Apply (push) Successful in 1m36s
Details

Browse Source 
The renovate_username value was stored in Vault but not being passed
as an environment variable to the container, causing authentication
failures with Gitea.

Changes:
- Added RENOVATE_USERNAME to the environment variables list in main.tf
- Value is retrieved from Vault at secret/renovate with key renovate_username

This should resolve the "Authentication failure" error in the Renovate
container logs, as the username is required for proper Gitea authentication.
This commit is contained in:
Patrick de Ruiter 2025-11-19 13:44:55 +01:00
parent 1cca7c9267
commit 2d287824c7
Signed by: pderuiter
GPG Key ID: 5EBA7F21CF583321
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
main.tf
View File

@ -36,6 +36,7 @@ resource "docker_container" "renovate" {
"RENOVATE_ENDPOINT=${data.vault_generic_secret.renovate.data["renovate_endpoint"]}", "RENOVATE_ENDPOINT=${data.vault_generic_secret.renovate.data["renovate_endpoint"]}",
"RENOVATE_TOKEN=${data.vault_generic_secret.renovate.data["renovate_token"]}", "RENOVATE_TOKEN=${data.vault_generic_secret.renovate.data["renovate_token"]}",
"RENOVATE_GIT_AUTHOR=${data.vault_generic_secret.renovate.data["renovate_git_author"]}", "RENOVATE_GIT_AUTHOR=${data.vault_generic_secret.renovate.data["renovate_git_author"]}",
"RENOVATE_USERNAME=${data.vault_generic_secret.renovate.data["renovate_username"]}",
"RENOVATE_AUTODISCOVER=${var.renovate_autodiscover}", "RENOVATE_AUTODISCOVER=${var.renovate_autodiscover}",
"LOG_LEVEL=${var.log_level}" "LOG_LEVEL=${var.log_level}"
], ],