diff --git a/.gitea/workflows/pr-cloudflare-docker-deploy.yml b/.gitea/workflows/pr-cloudflare-docker-deploy.yml index d9ebee50..03df97df 100644 --- a/.gitea/workflows/pr-cloudflare-docker-deploy.yml +++ b/.gitea/workflows/pr-cloudflare-docker-deploy.yml @@ -209,8 +209,9 @@ jobs: with: HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }} HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }} - HC_VAULT_AUTH: token - HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }} + HC_VAULT_AUTH: approle + HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }} + HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }} HC_VAULT_SECRETS_PATH: rinoa-docker/env - name: Pre-pull/build service images in parallel @@ -414,8 +415,9 @@ jobs: with: HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }} HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }} - HC_VAULT_AUTH: token - HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }} + HC_VAULT_AUTH: approle + HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }} + HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }} HC_VAULT_SECRETS_PATH: rinoa-docker/env - name: Pre-pull/build service images in parallel diff --git a/.gitea/workflows/renovate-pr-deploy.yml b/.gitea/workflows/renovate-pr-deploy.yml index 60f90576..e2b34a3c 100644 --- a/.gitea/workflows/renovate-pr-deploy.yml +++ b/.gitea/workflows/renovate-pr-deploy.yml @@ -138,8 +138,9 @@ jobs: with: HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }} HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }} - HC_VAULT_AUTH: token - HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }} + HC_VAULT_AUTH: approle + HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }} + HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }} HC_VAULT_SECRETS_PATH: rinoa-docker/env - name: Docker Compose Deployment