viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infra/stacks/openclaw
History
Viktor Barzin 982dc9e63a openclaw: task-webhook ingress auth required->none (inbound Forgejo webhook) 
The task-webhook host is an inbound webhook receiver: Forgejo (a machine
with no Authentik SSO cookie) POSTs issue/comment events, so forward-auth
302-bounced every delivery and silently dropped all webhooks. Flip only
this ingress to auth=none; the do_POST handler gates on payload action +
bot-user filtering. Gateway (openclaw) and openlobster stay auth=required.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-03 10:24:25 +00:00
..
files openclaw: SSH + tmux task fallback to devvm 2026-05-22 10:20:00 +00:00
.terraform.lock.hcl infra: add kubectl + authentik providers across 6 stacks 2026-05-21 08:07:22 +00:00
backend.tf nfs-mirror: append transferred files to offsite-sync manifest 2026-05-24 15:32:22 +00:00
main.tf openclaw: task-webhook ingress auth required->none (inbound Forgejo webhook) 2026-06-03 10:24:25 +00:00
providers.tf infra: add kubectl + authentik providers across 6 stacks 2026-05-21 08:07:22 +00:00
secrets [ci skip] Move Terraform modules into stack directories 2026-02-22 14:38:14 +00:00
terragrunt.hcl migrate all secrets from SOPS to Vault KV 2026-03-14 17:15:48 +00:00