JWT secret

help.txt

@@ -1,2 +1,12 @@
-For pull private dockerhub
+# For pull private dockerhub
+```
 kubectl create secret docker-registry regcred --docker-server=<registry> --docker-username=<your-name> --docker-password=<your-pword> --docker-email=<your-email>
+```
+
+# For jwt secrets
+```
+kubectl create secret generic jwt-secrets \
+    --from-literal=JWT_ISSUER="liquid" \
+    --from-literal=JWT_AUDIENCE="audience"\
+    --from-literal=JWT_SINGING_KEY="supersecretkey_supersecretkey_supersecretkey_supersecretkey"
+```

liquid-code-chart/templates/Deployments/backend-deployment.yaml

@@ -17,6 +17,7 @@ spec:
       containers:
       - name: {{ .Release.Name }}-backend
         image: ghcr.io/nullptroma/liquid-backend:1.0.0
+        imagePullPolicy: Always
         ports:
           - containerPort: 8080
         env:
@@ -30,6 +31,14 @@ spec:
             secretKeyRef:
               name: {{ .Values.s3.secretName | quote }}
               key: {{ required "secret-key-key!" .Values.s3.secretKeyKey | quote }}
+        - name: PG_URI
+          valueFrom:
+            secretKeyRef:
+              name: {{ required "Cluster name required" .Values.cnpg.clusterName }}-app
+              key: uri
+        envFrom:
+          - secretRef:
+              name: {{ required "" .Values.jwt.secretName }}
 
       imagePullSecrets:
         - name: github-registry

liquid-code-chart/values.yaml

@@ -12,5 +12,6 @@ cnpg:
     enable: false
     oldClusterName: liquid-db
     sourcePath: "s3://liquid-code/backup"
-
+jwt:
+    secretName: jwt-secrets
 imagePullSecret: github-registry