terraform-docker-renovate

Author	SHA1	Message	Date
Patrick de Ruiter	11a79e5b3e	feat: Add GitHub token support from Vault for changelog fetching All checks were successful Code Quality & Security Scan / TFLint (push) Successful in 24s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 34s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 40s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m26s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 2m6s Details	2025-11-29 12:42:51 +01:00
Patrick de Ruiter	56e15bd594	fix: Only set DNS if dns_servers list is not empty All checks were successful Code Quality & Security Scan / TFLint (push) Successful in 20s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 22s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 32s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m16s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 1m21s Details Changed dns configuration to use conditional assignment to avoid setting empty DNS list which Docker might ignore. Changes: - dns = length(var.dns_servers) > 0 ? var.dns_servers : null This ensures that: - If dns_servers is empty, dns is set to null (Docker uses defaults) - If dns_servers has values, they are properly applied to container	2025-11-20 10:21:25 +01:00
Patrick de Ruiter	88f64911a7	fix: Add DNS server configuration support for internal hostname resolution All checks were successful Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 27s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 44s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 39s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m24s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 1m31s Details Added dns_servers variable to allow configuring custom DNS servers for the container to resolve internal hostnames. Changes: - Added dns_servers variable (list of strings, default empty) - Added dns configuration to docker_container resource in main.tf - Allows container to resolve internal domains like gitea.bsdserver.nl This fixes the ENOTFOUND DNS resolution error where the container couldn't resolve internal Gitea hostname, which was being reported as an "Authentication failure" but was actually a network/DNS issue. The error was: getaddrinfo ENOTFOUND gitea.bsdserver.nl Usage: dns_servers = ["192.168.x.x", "192.168.x.y"] If not specified (default), container uses Docker's default DNS.	2025-11-19 14:27:42 +01:00
Patrick de Ruiter	2d287824c7	fix: Add missing RENOVATE_USERNAME environment variable All checks were successful Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s Details Code Quality & Security Scan / TFLint (push) Successful in 19s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 24s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 35s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 39s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m21s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 1m36s Details The renovate_username value was stored in Vault but not being passed as an environment variable to the container, causing authentication failures with Gitea. Changes: - Added RENOVATE_USERNAME to the environment variables list in main.tf - Value is retrieved from Vault at secret/renovate with key renovate_username This should resolve the "Authentication failure" error in the Renovate container logs, as the username is required for proper Gitea authentication.	2025-11-19 13:44:55 +01:00
Patrick de Ruiter	93ae123c1f	tf fmt Some checks failed Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 30s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 36s Details Code Quality & Security Scan / Terraform Plan (push) Failing after 48s Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details Code Quality & Security Scan / TFLint (push) Successful in 19s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 42s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 40s Details	2025-11-19 00:41:13 +01:00
Patrick de Ruiter	786d1acbb0	Fixed some more variables in main.tf replaced variable with data statement from vault Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Validate (push) Failing after 29s Details Code Quality & Security Scan / SonarQube Scan (push) Has been skipped Details Code Quality & Security Scan / Terraform Plan (push) Has been skipped Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 33s Details	2025-11-19 00:38:26 +01:00
Patrick de Ruiter	b70952d0f7	Fixed outputs.tf and main.tf replaced variable with data statement from vault Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 39s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 38s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 42s Details Code Quality & Security Scan / Terraform Plan (push) Failing after 53s Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details	2025-11-19 00:29:25 +01:00
Patrick de Ruiter	679d2f3286	Moved renovate settings and credentials to vault Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 19s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Validate (push) Failing after 22s Details Code Quality & Security Scan / SonarQube Scan (push) Has been skipped Details Code Quality & Security Scan / Terraform Plan (push) Has been skipped Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details	2025-11-19 00:20:23 +01:00
Patrick de Ruiter	d417281ee0	feat: Repurpose module from Ansible EDA to Renovate bot deployment Complete rewrite of the module to deploy a Renovate bot for automated dependency management with Gitea integration. Breaking Changes: - Module purpose changed from Ansible EDA to Renovate bot - All variables restructured for Renovate configuration - State file path updated to home/docker/renovate/renovate.tfstate - Volumes changed from EDA rulebooks/logs to config/cache - Container image now uses renovate/renovate:latest Added: - Gitea platform integration with token authentication - Renovate configuration template (config.js.tpl) - Repository configuration examples - Gitea Actions workflow examples - SonarQube integration examples - Comprehensive documentation (README, QUICKSTART, MIGRATION_GUIDE) - CHANGELOG.md for version tracking - Security best practices Removed: - All Ansible EDA-specific configuration - Traefik labels (not needed for Renovate) - Old EDA documentation files - example-rulebook.yml Updated: - Complete README with Gitea setup instructions - terraform.tfvars with Renovate configuration - All resource names from ansible_eda to renovate - Backend state path This is version 2.0.0 - not backward compatible with previous EDA version. See MIGRATION_GUIDE.md for detailed migration instructions.	2025-11-17 00:32:51 +01:00

9 Commits