gitea to minimal kustomize

to track the secrets

gitea/application.yaml

@@ -19,21 +19,15 @@ spec:
 apiVersion: codemowers.cloud/v1beta1
 kind: SecretClaim
 metadata:
-  name: gitea-security-secret-key
+  name: gitea-random
 spec:
   size: 32
   mapping:
-    - key: secret
+    - key: GITEA__SECURITY__SECRET_KEY
       value: "%(plaintext)s"
----
-apiVersion: codemowers.cloud/v1beta1
-kind: SecretClaim
-metadata:
-  name: gitea-security-internal-token
-spec:
-  size: 32
-  mapping:
-    - key: secret
+    - key: GITEA__SECURITY__INTERNAL_TOKEN
+      value: "%(plaintext)s"
+    - key: GITEA__OAUTH2__JWT_SECRET
       value: "%(plaintext)s"
 ---
 apiVersion: codemowers.cloud/v1beta1
@@ -214,23 +208,23 @@ spec:
             - name: GITEA__MAILER__PASSWD
               valueFrom:
                 secretKeyRef:
-                  name: gitea-secrets
+                  name: gitea-mail
                   key: GITEA__MAILER__PASSWD
             - name: GITEA__OAUTH2__JWT_SECRET
               valueFrom:
                 secretKeyRef:
-                  name: gitea-secrets
+                  name: gitea-random
                   key: GITEA__OAUTH2__JWT_SECRET
             - name: GITEA__SECURITY__INTERNAL_TOKEN
               valueFrom:
                 secretKeyRef:
-                  name: gitea-security-internal-token
-                  key: secret
+                  name: gitea-random
+                  key: GITEA__SECURITY__INTERNAL_TOKEN
             - name: GITEA__SECURITY__SECRET_KEY
               valueFrom:
                 secretKeyRef:
-                  name: gitea-security-secret-key
-                  key: secret
+                  name: gitea-random
+                  key: GITEA__SECURITY__SECRET_KEY
           ports:
             - containerPort: 8080
               name: http