infra

History

Viktor Barzin 1f2c1ca361 [ci skip] phase 5+6: update CI pipelines for SOPS, add sensitive=true to secret vars Phase 5 — CI pipelines: - default.yml: add SOPS decrypt in prepare step, change git add . to specific paths (stacks/ state/ .woodpecker/), cleanup on success+failure - renew-tls.yml: change git add . to git add secrets/ state/ Phase 6 — sensitive=true: - Add sensitive = true to 256 variable declarations across 149 stack files - Prevents secret values from appearing in terraform plan output - Does NOT modify shared modules (ingress_factory, nfs_volume) to avoid breaking module interface contracts Note: CI pipeline SOPS decryption requires sops_age_key Woodpecker secret to be created before the pipeline will work with SOPS. Until then, the old terraform.tfvars path continues to function.		2026-03-07 14:30:36 +00:00
..
modules	[ci skip] phase 5+6: update CI pipelines for SOPS, add sensitive=true to secret vars	2026-03-07 14:30:36 +00:00
.gitkeep	[ci skip] Add Terragrunt directory skeleton and root config	2026-02-22 13:01:37 +00:00
.terraform.lock.hcl	[ci skip] Move Terraform modules into stack directories	2026-02-22 14:38:14 +00:00
backend.tf	[ci skip] Move Terraform modules into stack directories	2026-02-22 14:38:14 +00:00
main.tf	[ci skip] phase 5+6: update CI pipelines for SOPS, add sensitive=true to secret vars	2026-03-07 14:30:36 +00:00
providers.tf	[ci skip] phase 5+6: update CI pipelines for SOPS, add sensitive=true to secret vars	2026-03-07 14:30:36 +00:00
redis-25.3.2.tgz	[ci skip] add auto-generated tiers.tf, planning docs, and helm chart cache	2026-03-06 23:55:57 +00:00
secrets	[ci skip] Migrate 22 platform service states to stacks/platform	2026-02-22 13:35:10 +00:00
terragrunt.hcl	[ci skip] Add platform stack (core services) for Terragrunt migration	2026-02-22 13:21:09 +00:00
tiers.tf	[ci skip] Phase 1: PostgreSQL migrated to CNPG on local disk	2026-02-28 19:08:06 +00:00