From a754d05075056ce19098516bddca64976d2c884f Mon Sep 17 00:00:00 2001
From: CaffeineTux <admin@caffeinetux.com>
Date: Sun, 16 Nov 2025 03:11:16 -0500
Subject: [PATCH] Add secrets to MCP umbrella values for deployment

Individual MCP charts don't support existingSecret pattern.
Secrets are now embedded in values.yaml which is stored in git.

NOTE: This is a temporary solution. Future improvement should:
- Modify MCP charts to support existingSecret
- Or use SealedSecrets/SOPS-encrypted valuesFrom in Flux

All 16 MCP charts now ready for deployment via Flux.
---
 platform/mcp-servers/helmrelease.yaml |  8 +-------
 platform/mcp-servers/values.yaml      | 19 +++++++++++--------
 2 files changed, 12 insertions(+), 15 deletions(-)

diff --git a/platform/mcp-servers/helmrelease.yaml b/platform/mcp-servers/helmrelease.yaml
index e7a6890..60478f1 100644
--- a/platform/mcp-servers/helmrelease.yaml
+++ b/platform/mcp-servers/helmrelease.yaml
@@ -27,11 +27,5 @@ spec:
       remediateLastFailure: true
     cleanupOnFail: true
 
-  valuesFrom:
-    - kind: ConfigMap
-      name: mcp-umbrella-values
-      optional: true
-
   values:
-    # Values from values.yaml will be automatically used
-    # Additional overrides can be placed here
+    # Values from values.yaml in git will be automatically used
diff --git a/platform/mcp-servers/values.yaml b/platform/mcp-servers/values.yaml
index 73056c2..acbacf6 100644
--- a/platform/mcp-servers/values.yaml
+++ b/platform/mcp-servers/values.yaml
@@ -40,8 +40,11 @@ mcp-gateway:
   gateway:
     auth:
       enabled: true
-      # API keys loaded from Secret: mcp-gateway-api-keys
-      existingSecret: mcp-gateway-api-keys
+      apiKeys:
+        - name: "n8n"
+          key: "d8c32225b3ae87fc3c58811ee171d8fb03d60ff1225000a9286785edb0af21a4"
+        - name: "admin"
+          key: "244a99ed30be843541cdfbeb07b9292e19e041956840ebb4b7a169a5904c88f5"
 
     logLevel: "info"
     timeout: 30000
@@ -104,8 +107,7 @@ n8n-mcp:
   n8nMCP:
     n8n:
       url: "http://n8n.n8n.svc.cluster.local:5678"
-      # API key loaded from Secret: n8n-mcp-api-key
-      existingSecret: n8n-mcp-api-key
+      apiKey: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIyNWI4Njk4My0wOWQzLTRjMzAtOWQ0OC03OWQxOWMxZjc5Y2UiLCJpc3MiOiJuOG4iLCJhdWQiOiJwdWJsaWMtYXBpIiwiaWF0IjoxNzYzMDk2NDU4fQ.I9MhQ1THxAD-P4mfcZAl3qxpjoIYM61OD1BIILDyPUw"
     mode: "full"
     logLevel: "info"
 
@@ -154,8 +156,8 @@ kubernetes-mcp:
 github-mcp:
   enabled: true
   github:
-    # Token and owner loaded from Secret: github-mcp-token
-    existingSecret: github-mcp-token
+    token: "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"
+    owner: "caffeinetux"
 
 # =============================================================================
 # PostgreSQL MCP Server Configuration
@@ -266,5 +268,6 @@ memory-mcp:
 gitea-mcp:
   enabled: true
   gitea:
-    # Token, owner, and URL loaded from Secret: gitea-mcp-token
-    existingSecret: gitea-mcp-token
+    url: "http://gitea-http.gitea.svc.cluster.local:3000"
+    token: "b8a17f45f86db1cb1924487189a2d8e3d298a611"
+    owner: "admin"