|
| 1 | +# Unleash Credentials Secret |
| 2 | +# Copy this file to unleash-credentials-secret.yaml and customize values |
| 3 | +# |
| 4 | +# To apply: kubectl apply -f unleash-credentials-secret.yaml -n ambient-code |
| 5 | +# |
| 6 | +# IMPORTANT: Change all credentials for production deployments! |
| 7 | +# |
| 8 | +# This secret is used by: |
| 9 | +# 1. unleash-deployment.yaml - Unleash server configuration |
| 10 | +# 2. backend-deployment.yaml - Backend API for feature flag evaluation |
| 11 | +# 3. frontend-deployment.yaml - Frontend for flag proxy |
| 12 | +# |
| 13 | +# NOTE: PostgreSQL credentials are in postgresql-credentials-secret.yaml |
| 14 | +# |
| 15 | +apiVersion: v1 |
| 16 | +kind: Secret |
| 17 | +metadata: |
| 18 | + name: unleash-credentials |
| 19 | + labels: |
| 20 | + app: unleash |
| 21 | + app.kubernetes.io/name: unleash |
| 22 | +type: Opaque |
| 23 | +stringData: |
| 24 | + # ============================================================ |
| 25 | + # Database connection (uses shared PostgreSQL instance) |
| 26 | + # Update password to match postgresql-credentials-secret.yaml |
| 27 | + # ============================================================ |
| 28 | + database-url: "postgres://postgres:CHANGE_ME_IN_PRODUCTION@postgresql:5432/unleash" |
| 29 | + # Enable SSL for production database connections |
| 30 | + database-ssl: "true" |
| 31 | + |
| 32 | + # ============================================================ |
| 33 | + # Unleash API URLs (used by backend-deployment.yaml) |
| 34 | + # ============================================================ |
| 35 | + # Client API URL - for flag evaluation |
| 36 | + unleash-url: "http://unleash.ambient-code.svc.cluster.local:4242/api" |
| 37 | + |
| 38 | + # Admin API URL - for listing flags and admin operations |
| 39 | + unleash-admin-url: "http://unleash.ambient-code.svc.cluster.local:4242" |
| 40 | + |
| 41 | + # ============================================================ |
| 42 | + # Unleash API Tokens |
| 43 | + # Format: <project>:<environment>.<token> |
| 44 | + # Use *:* for wildcard (all projects/environments) |
| 45 | + # ============================================================ |
| 46 | + |
| 47 | + # Admin API token - full admin access |
| 48 | + # Used by: UNLEASH_ADMIN_TOKEN in backend |
| 49 | + admin-api-token: "*:*.unleash-admin-token" |
| 50 | + |
| 51 | + # Client API token - read-only for flag evaluation |
| 52 | + # Used by: UNLEASH_CLIENT_KEY in backend |
| 53 | + client-api-token: "default:development.unleash-client-token" |
| 54 | + |
| 55 | + # Frontend API token - for direct browser SDK usage (optional) |
| 56 | + frontend-api-token: "default:development.unleash-frontend-token" |
| 57 | + |
| 58 | + # ============================================================ |
| 59 | + # Unleash Project/Environment (used by backend-deployment.yaml) |
| 60 | + # ============================================================ |
| 61 | + unleash-project: "default" |
| 62 | + unleash-environment: "development" |
0 commit comments