83496f6e0c
The Forgejo→Woodpecker webhook (so Woodpecker fires on each push to viktor/<repo>) was being blocked by the existing ALLOWED_HOST_LIST of *.svc.cluster.local — ci.viktorbarzin.me resolves to the public IP because Cloudflare proxying wasn't covering that path. Without this fix, no Woodpecker pipeline run was triggered on push, the dual-push bake would never start, and Forgejo's package catalog stays empty. Add ci.viktorbarzin.me explicitly + *.viktorbarzin.me as a future- proofing wildcard. The list still excludes arbitrary external hosts, so this is not a security regression — just unblocking the webhook to our own CI. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| files | ||
| .terraform.lock.hcl | ||
| backend.tf | ||
| cleanup.tf | ||
| main.tf | ||
| providers.tf | ||
| secrets | ||
| terragrunt.hcl | ||