admin/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add secrets to MCP umbrella values for deployment

Browse Source 
Individual MCP charts don't support existingSecret pattern.
Secrets are now embedded in values.yaml which is stored in git.

NOTE: This is a temporary solution. Future improvement should:
- Modify MCP charts to support existingSecret
- Or use SealedSecrets/SOPS-encrypted valuesFrom in Flux

All 16 MCP charts now ready for deployment via Flux.
This commit is contained in:
CaffeineTux
2025-11-16 03:11:16 -05:00
parent c539116eb4
commit a754d05075
2 changed files with 12 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
platform/mcp-servers/helmrelease.yaml
View File

@@ -27,11 +27,5 @@ spec:
remediateLastFailure: true remediateLastFailure: true
cleanupOnFail: true cleanupOnFail: true
valuesFrom:
- kind: ConfigMap
name: mcp-umbrella-values
optional: true
values: values:
# Values from values.yaml will be automatically used # Values from values.yaml in git will be automatically used
# Additional overrides can be placed here

19
platform/mcp-servers/values.yaml
View File

@@ -40,8 +40,11 @@ mcp-gateway:
gateway: gateway:
auth: auth:
enabled: true enabled: true
# API keys loaded from Secret: mcp-gateway-api-keys apiKeys:
existingSecret: mcp-gateway-api-keys - name: "n8n"
key: "d8c32225b3ae87fc3c58811ee171d8fb03d60ff1225000a9286785edb0af21a4"
- name: "admin"
key: "244a99ed30be843541cdfbeb07b9292e19e041956840ebb4b7a169a5904c88f5"
logLevel: "info" logLevel: "info"
timeout: 30000 timeout: 30000
@@ -104,8 +107,7 @@ n8n-mcp:
n8nMCP: n8nMCP:
n8n: n8n:
url: "http://n8n.n8n.svc.cluster.local:5678" url: "http://n8n.n8n.svc.cluster.local:5678"
# API key loaded from Secret: n8n-mcp-api-key apiKey: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIyNWI4Njk4My0wOWQzLTRjMzAtOWQ0OC03OWQxOWMxZjc5Y2UiLCJpc3MiOiJuOG4iLCJhdWQiOiJwdWJsaWMtYXBpIiwiaWF0IjoxNzYzMDk2NDU4fQ.I9MhQ1THxAD-P4mfcZAl3qxpjoIYM61OD1BIILDyPUw"
existingSecret: n8n-mcp-api-key
mode: "full" mode: "full"
logLevel: "info" logLevel: "info"
@@ -154,8 +156,8 @@ kubernetes-mcp:
github-mcp: github-mcp:
enabled: true enabled: true
github: github:
# Token and owner loaded from Secret: github-mcp-token token: "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"
existingSecret: github-mcp-token owner: "caffeinetux"
# ============================================================================= # =============================================================================
# PostgreSQL MCP Server Configuration # PostgreSQL MCP Server Configuration
@@ -266,5 +268,6 @@ memory-mcp:
gitea-mcp: gitea-mcp:
enabled: true enabled: true
gitea: gitea:
# Token, owner, and URL loaded from Secret: gitea-mcp-token url: "http://gitea-http.gitea.svc.cluster.local:3000"
existingSecret: gitea-mcp-token token: "b8a17f45f86db1cb1924487189a2d8e3d298a611"
owner: "admin"