added new var name for traefik cf
This commit is contained in:
Ubuntu
@@ -56,45 +56,34 @@
|
|||||||
dest: "{{ target_dir }}/.env"
|
dest: "{{ target_dir }}/.env"
|
||||||
content: |
|
content: |
|
||||||
{# App Secrets & Cloudflare Secrets zusammenführen #}
|
{# App Secrets & Cloudflare Secrets zusammenführen #}
|
||||||
{% set all_secrets = {} %}
|
{%- set all_secrets = {} -%}
|
||||||
|
|
||||||
{# 1. App Secrets laden #}
|
{# 1. App Secrets laden #}
|
||||||
{% set app_sec_data = app_secrets.secret | default(app_secrets.data | default(app_secrets)) %}
|
{%- set app_sec_data = app_secrets.secret | default(app_secrets.data | default(app_secrets)) -%}
|
||||||
{% if app_sec_data is mapping %}
|
{%- if app_sec_data is mapping -%}
|
||||||
{% set _ = all_secrets.update(app_sec_data) %}
|
{%- set _ = all_secrets.update(app_sec_data) -%}
|
||||||
{% endif %}
|
{%- endif -%}
|
||||||
|
|
||||||
{# 2. Cloudflare Secrets (für Traefik Edge) laden #}
|
{# 2. Cloudflare Secrets (für Traefik Edge) laden #}
|
||||||
{% if cf_secrets_payload is defined and cf_secrets_payload is mapping %}
|
{%- if cf_secrets_payload is defined and cf_secrets_payload is mapping -%}
|
||||||
{% set _ = all_secrets.update(cf_secrets_payload) %}
|
{%- set _ = all_secrets.update(cf_secrets_payload) -%}
|
||||||
{% endif %}
|
{%- endif -%}
|
||||||
|
|
||||||
{# 3. Ausgabe #}
|
{# 3. Ausgabe #}
|
||||||
{% for key, value in all_secrets.items() %}
|
{%- for key, value in all_secrets.items() -%}
|
||||||
{% if key not in ['data', 'metadata', 'auth', 'lease_id', 'lease_duration', 'renewable', 'request_id', 'wrap_info', 'warnings', 'raw'] %}
|
{%- if key not in ['data', 'metadata', 'auth', 'lease_id', 'lease_duration', 'renewable', 'request_id', 'wrap_info', 'warnings', 'raw'] -%}
|
||||||
|
{%- if app_item.name == 'traefik-edge' -%}
|
||||||
{# Spezifisches Mapping für Traefik Edge #}
|
{%- if key == 'api_token' -%}
|
||||||
{% if app_item.name == 'traefik-edge' %}
|
|
||||||
{# Mapping Regeln #}
|
|
||||||
{% if key == 'api_token' %}
|
|
||||||
CF_DNS_API_TOKEN={{ value }}
|
CF_DNS_API_TOKEN={{ value }}
|
||||||
CF_ZONE_API_TOKEN={{ value }}
|
CF_ZONE_API_TOKEN={{ value }}
|
||||||
{% elif key == 'email' %}
|
{%- elif key == 'email' -%}
|
||||||
CF_API_EMAIL={{ value }}
|
CF_API_EMAIL={{ value }}
|
||||||
{% elif key in ['CLOUDFLARE_API_KEY', 'CLOUDFLARE_EMAIL'] %}
|
{%- elif key in ['CLOUDFLARE_API_KEY', 'CLOUDFLARE_EMAIL'] -%}
|
||||||
{# Alte Keys ignorieren #}
|
{%- else -%}
|
||||||
{% else %}
|
|
||||||
{# Alle anderen Keys 1:1 übernehmen #}
|
|
||||||
{{ key | trim }}={{ value }}
|
{{ key | trim }}={{ value }}
|
||||||
{% endif %}
|
{%- endif -%}
|
||||||
|
{%- else -%}
|
||||||
{% else %}
|
|
||||||
{# Für alle anderen Apps: 1:1 übernehmen #}
|
|
||||||
{{ key | trim }}={{ value }}
|
{{ key | trim }}={{ value }}
|
||||||
{% endif %}
|
{%- endif -%}
|
||||||
|
{%- endif -%}
|
||||||
{% endif %}
|
{%- endfor -%}
|
||||||
{% endfor %}
|
|
||||||
mode: '0600'
|
mode: '0600'
|
||||||
when: (app_item.has_secrets | default(false) and app_secrets | length > 0) or (app_item.name == 'traefik-edge' and cf_secrets_payload is defined)
|
when: (app_item.has_secrets | default(false) and app_secrets | length > 0) or (app_item.name == 'traefik-edge' and cf_secrets_payload is defined)
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user