terraform-docker-renovate

Author	SHA1	Message	Date
Patrick de Ruiter	9cee473d1e	feat: Schedule Renovate to run only between 2-4 AM Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 22s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 36s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 54s Details Code Quality & Security Scan / Terraform Validate (push) Failing after 25s Details Code Quality & Security Scan / SonarQube Scan (push) Has been skipped Details Code Quality & Security Scan / Terraform Plan (push) Has been skipped Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details Add schedule configuration to reduce resource usage by limiting Renovate runs to a nightly maintenance window. - schedule: 'after 2am and before 4am' - timezone: Europe/Amsterdam Renovate will now only check for updates during this window instead of running continuously.	2025-11-29 12:08:51 +01:00
Patrick de Ruiter	88f64911a7	fix: Add DNS server configuration support for internal hostname resolution All checks were successful Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 27s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 44s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 39s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m24s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 1m31s Details Added dns_servers variable to allow configuring custom DNS servers for the container to resolve internal hostnames. Changes: - Added dns_servers variable (list of strings, default empty) - Added dns configuration to docker_container resource in main.tf - Allows container to resolve internal domains like gitea.bsdserver.nl This fixes the ENOTFOUND DNS resolution error where the container couldn't resolve internal Gitea hostname, which was being reported as an "Authentication failure" but was actually a network/DNS issue. The error was: getaddrinfo ENOTFOUND gitea.bsdserver.nl Usage: dns_servers = ["192.168.x.x", "192.168.x.y"] If not specified (default), container uses Docker's default DNS.	2025-11-19 14:27:42 +01:00
Patrick de Ruiter	57e03ed2db	Upped loglevel to debug All checks were successful Code Quality & Security Scan / TFLint (push) Successful in 19s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 28s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 36s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 30s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 43s Details Code Quality & Security Scan / Terraform Plan (push) Successful in 1m24s Details Code Quality & Security Scan / Terraform Apply (push) Successful in 1m45s Details	2025-11-19 14:18:04 +01:00
Patrick de Ruiter	679d2f3286	Moved renovate settings and credentials to vault Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 19s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Validate (push) Failing after 22s Details Code Quality & Security Scan / SonarQube Scan (push) Has been skipped Details Code Quality & Security Scan / Terraform Plan (push) Has been skipped Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details	2025-11-19 00:20:23 +01:00
Patrick de Ruiter	bb54c5bf5b	fix: Set vault_skip_tls_verify default to true Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 23s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 32s Details Code Quality & Security Scan / SonarQube Scan (push) Has been cancelled Details Code Quality & Security Scan / Terraform Plan (push) Has been cancelled Details Code Quality & Security Scan / Terraform Apply (push) Has been cancelled Details Code Quality & Security Scan / Terraform Validate (push) Has started running Details Changed vault_skip_tls_verify default from false to true to accommodate self-signed certificates in the infrastructure.	2025-11-18 03:54:51 +01:00
Patrick de Ruiter	e2b0c4c54e	fix: Add missing vault_skip_tls_verify variable declaration Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 20s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 25s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 35s Details Code Quality & Security Scan / Terraform Validate (push) Successful in 33s Details Code Quality & Security Scan / SonarQube Scan (push) Successful in 44s Details Code Quality & Security Scan / Terraform Plan (push) Failing after 49s Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details Added vault_skip_tls_verify variable to fix Terraform validation error. This variable is referenced in provider.tf but was not declared in variables.tf. Default value is false for security, can be set to true for self-signed certificates in development/testing environments.	2025-11-18 03:20:21 +01:00
Patrick de Ruiter	d417281ee0	feat: Repurpose module from Ansible EDA to Renovate bot deployment Complete rewrite of the module to deploy a Renovate bot for automated dependency management with Gitea integration. Breaking Changes: - Module purpose changed from Ansible EDA to Renovate bot - All variables restructured for Renovate configuration - State file path updated to home/docker/renovate/renovate.tfstate - Volumes changed from EDA rulebooks/logs to config/cache - Container image now uses renovate/renovate:latest Added: - Gitea platform integration with token authentication - Renovate configuration template (config.js.tpl) - Repository configuration examples - Gitea Actions workflow examples - SonarQube integration examples - Comprehensive documentation (README, QUICKSTART, MIGRATION_GUIDE) - CHANGELOG.md for version tracking - Security best practices Removed: - All Ansible EDA-specific configuration - Traefik labels (not needed for Renovate) - Old EDA documentation files - example-rulebook.yml Updated: - Complete README with Gitea setup instructions - terraform.tfvars with Renovate configuration - All resource names from ansible_eda to renovate - Backend state path This is version 2.0.0 - not backward compatible with previous EDA version. See MIGRATION_GUIDE.md for detailed migration instructions.	2025-11-17 00:32:51 +01:00

7 Commits