From 39eff42bda73df863d6a84f5713779918a1b9a6c Mon Sep 17 00:00:00 2001
From: Nikolai Rodionov <allanger@zohomail.com>
Date: Sat, 29 Jul 2023 22:26:45 +0200
Subject: [PATCH] Update the leaked redis password

Also updated for Gitea and Funkwhale
---
 badhouseplants/values/secrets.funkwhale.yaml |  6 +++---
 badhouseplants/values/secrets.gitea.yaml     | 18 ++++++++----------
 badhouseplants/values/secrets.redis.yaml     |  9 ++++++---
 badhouseplants/values/values.gitea.yaml      |  6 ------
 4 files changed, 17 insertions(+), 22 deletions(-)

diff --git a/badhouseplants/values/secrets.funkwhale.yaml b/badhouseplants/values/secrets.funkwhale.yaml
index 8655857..bc30824 100644
--- a/badhouseplants/values/secrets.funkwhale.yaml
+++ b/badhouseplants/values/secrets.funkwhale.yaml
@@ -4,7 +4,7 @@ postgresql:
         password: ENC[AES256_GCM,data:IKPFpCY0Im2SQquNFM/3umvGfYOt1A==,iv:asWxkKTvez1FxxXto/ulh4CDBvPZ6SovqKnoFEQjG/s=,tag:iqyxZU+jERNgakMcAm+cnQ==,type:str]
 redis:
     auth:
-        password: ENC[AES256_GCM,data:aeU0t+HU/SYw2e4Ka/xUFecc+dw=,iv:+sqbnts+Sammd5RyEMpYwbcpOuFISamwessi4ZyPfxE=,tag:B+77buXXmAi9qGNpHgZ/BQ==,type:str]
+        password: ENC[AES256_GCM,data:fgxZMA13BpFf5FA8JwLUXjlelUgvR4qtg316OALq,iv:numLe3PrsToG0Fbl7+mdbWOBTb7XrgppF09pIVg+rrU=,tag:ivKuF0xFe/s4P1otjLML8g==,type:str]
 sops:
     kms: []
     gcp_kms: []
@@ -20,8 +20,8 @@ sops:
             dWdMUFpOOVJYSXdBbzJiSzhQM0VmbWMKUqdIpfa8i7vASIga8HFurrPf1RgA+WVA
             GZiG+M0i4yc3SooTIwbDzH0orfaEHueKdNTGOXMgxNiRIt2q9BG76g==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-07-29T17:45:04Z"
-    mac: ENC[AES256_GCM,data:5SQLrGXu7BxhIpQYtv9gW3hyX9kC9Gdpjlqm8UcL803qOQxHSz0BryzEEot//K0ka8cud+uRWQUfNairZYWj6uBNkcM+aFy2kZUKMMozBShi+5kd0BzC1TNYhxaOXmfjTE2bjjdFBFW5xmIqnu15DmzqPU2cxjpGQuea8ol0G/c=,iv:G/IlEOU2hbYa3czcd0n4T/l52if6W4nx43ZKCchX3bQ=,tag:wfEzMjeiIAMMBIgIjaOYOg==,type:str]
+    lastmodified: "2023-07-29T20:22:20Z"
+    mac: ENC[AES256_GCM,data:G9+rbTp4AXIr97bl4UUUIMsd47Gmwt5IGFJQMSAtKRkCCcWIVK9ac+3nX5g9gOgziKvPE7moETXPAfFjcfOQFvi8bmU7jZnoLr4rOvP7SX1LZEfs9siCCtC1q9S/VrlWhxx/2Cpz1EegM+o2cQepqGr4IoIpboEowKl2yhpZiko=,iv:aRDq9ptB6GrRAvl5b0yyKVTZwOPdtFvSGEIPhlMrZbg=,tag:PsRUQJrBtu3sfLcIhIJbqw==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.7.3
diff --git a/badhouseplants/values/secrets.gitea.yaml b/badhouseplants/values/secrets.gitea.yaml
index 86388fa..24357eb 100644
--- a/badhouseplants/values/secrets.gitea.yaml
+++ b/badhouseplants/values/secrets.gitea.yaml
@@ -1,11 +1,3 @@
-postgresql:
-    global:
-        postgresql:
-            auth:
-                database: ENC[AES256_GCM,data:Cy0E9Sw=,iv:d68IzroVmsj4Y5QOgSlev7g+kTeovg29cEe2wLnWA50=,tag:pl5RqMwMtrSZgoGBkUCE9w==,type:str]
-                username: ENC[AES256_GCM,data:JJBW6Xs=,iv:M7EQ9UeNqjgG8B0ZAp0zHnFXHPzu+GskhyxVt0pxoJE=,tag:ujwxxXJwgpqYf7XZyXySCg==,type:str]
-                password: ENC[AES256_GCM,data:Fqnl7GQhgpFFRH72ZWeCsfeQjAQ=,iv:0O3zUWRAOjmc2MzOPIWj5Fq5bsemoGRBRk1u3/gU9ro=,tag:4bkQKMU1WTjRxiS10IzssQ==,type:str]
-                postgresPassword: ENC[AES256_GCM,data:qlLEaSfvrcROlA==,iv:3jDMPZtK/Jnjt2KXKLUlTDHOvObgjI1Q5U2UlFsivaE=,tag:tuaGHQzKD26JO6X5HAiXTw==,type:str]
 gitea:
     admin:
         username: ENC[AES256_GCM,data:f4o3zs74rjY=,iv:t5Cx0suxiZduwL2bsfNyxOVI8RZH1ytEGUdOF2nONco=,tag:mo/BwFwzw7e8tAX6LyaIQg==,type:str]
@@ -15,6 +7,12 @@ gitea:
             ENABLED: ENC[AES256_GCM,data:C2qWn4E=,iv:APUvrTInDdxf1tJ5eFSgxUej8e085HZalsiHY6/Fryc=,tag:MW3KhfU+25EWDzM/+QOZ5A==,type:bool]
         database:
             PASSWD: ENC[AES256_GCM,data:EVawxgpBgJ1ZlU4F+KFlJZXHq/4=,iv:ZUC7YBQ+RXNKLFEZzAeXfoGqBv9ilGw6Q5ynspAsc78=,tag:Wpb3awtdRLLBNYmmuTUCrA==,type:str]
+        session:
+            PROVIDER_CONFIG: ENC[AES256_GCM,data:i/N01zYx1H1D1eFiZKOmf4e1LoDBJE5AoN4eZl3h/QKwOEy5x4LNQoF7CbGguCBMvITtYbzXr12VzQ8pxEf17z6nssQ2nNiz84zuBOY9DQqxZLkxS5AmKKgk7XKF/YYYDaavMdJj54gtXoCrDZ58z5Tw8FM0ScTRp2+4RXGMwg==,iv:dKZhe9cOPDhdtK9sJKzCHmimV1vcuAebY8DfaJMqk2Q=,tag:ZhyEepW4wIM1Dv97xn5xBA==,type:str]
+        cache:
+            HOST: ENC[AES256_GCM,data:UI4Dgb4qajStyDcpuJaoJTaTo3vowWQw272Y4C5q3DuV9DarChv4Qvxh9ZJwYsPSgO9G/3eI+mLldipW98HLfATMCHR+DicM7ymI0nGwxeliyj7sOVGFS2dU4zF1kNyhFCqrjMfQzTRQbfOTiB+QyfhluMfrDbOjOAAuLlsdWQ==,iv:WOlGAxAtIS12vCGIUmxMhO3UIsoUuD3xluZbBThugW4=,tag:Y0Amh1HEtYcg+9JvROM1eQ==,type:str]
+        queue:
+            CONN_STR: ENC[AES256_GCM,data:kpqTpJVI/8790Ho2/U8YTC2Sc/d7v8mc33PsG7vNO52d9vMCOgsb+GQldWlfMPdf1H09axJxdFc5SIvsWWD8FoaXvtktlz4yk6fL9YxEXnkpn72VSiNe+ajUu6diP4gYWw2cUhyKt3ss/Gx70bKMEyE5g/ecZG3S+NZPFxPSTw==,iv:T69ou0uBg5CrseI0VwB2sSKRDknXrlUVPb/igGI/1H0=,tag:Y42Wa4QVt8k6AmhDC5bOAg==,type:str]
     oauth:
         - name: ENC[AES256_GCM,data:iR9QX2Si,iv:B+4ixm+dOwAnXFCYq2BnExnfVDGooonBCiHpyxfkLP0=,tag:r7CZbpL9uQ1QjAFNiFfOsw==,type:str]
           provider: ENC[AES256_GCM,data:byE4rELH,iv:lcvbNSZMD9EMA4CmJF2mvN33a5fmXWzP4++PnNPK+fg=,tag:2wfHrpp/bJJOImBq5ULzqw==,type:str]
@@ -35,8 +33,8 @@ sops:
             Ym5KMWw5ZDBBZzJBcHBXdFZiaDZpU0UKNl/GkGP25D7z5a8mVBmoSTfOM3EzymPN
             WW62zIoBHlwLxF9nwj1xCCtcL1XKgiB8nnn4IrY3ljqFc0VkxD9dnQ==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-07-26T20:46:45Z"
-    mac: ENC[AES256_GCM,data:ZZ5KeUmc5FqFIfZKkVfmu9s2YWCbFULgHiF8JMjgyIYqnUkE1gSPq7PqCJFnHuDmg9b9QKw7KbT1SgCTY9UXcZ2h8xQGQ6SrU3oDBVLGG+tJovTqAgeEAy3WUqSensAw86OHVbQafC+urO7pW83suGVBp19vhT7lNm3tpM43i08=,iv:RXnqoZy/p8wJEDV2jtbzQWfvAOJpAEc3SFso+bVtZsg=,tag:vBvtEm9Q/pEKeD9ek+xWVA==,type:str]
+    lastmodified: "2023-07-29T20:30:31Z"
+    mac: ENC[AES256_GCM,data:jd8jrX6GTAsEMydRfjLPW8XKXs4HgNNMqR0UvzVq0qFl/2zisKYLxtc6m4XBjDLeI8te+nNcJ16XYR0tdayM4PjXzurC9bAMdyI4utv1cRUJdWVxbo2oODWjJ9IAHqwkVHfJOrAJ7j0qamzHr/4h7u2DsLxvHm/lQY2g5zDKPD0=,iv:P215bq4q6iv8fSpU2CvfUhR1Pbr6mpYtv868m2F+M44=,tag:oWzMZOyCuxf2JBiGjDdCKg==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.7.3
diff --git a/badhouseplants/values/secrets.redis.yaml b/badhouseplants/values/secrets.redis.yaml
index 13a18e0..14b99c2 100644
--- a/badhouseplants/values/secrets.redis.yaml
+++ b/badhouseplants/values/secrets.redis.yaml
@@ -1,6 +1,9 @@
 global:
     redis:
-        password: ENC[AES256_GCM,data:kf/oRSCxPziRerU2Z4AqXJk/fp4=,iv:6d3t4cbjbcI8Wnw5dmO6NkOVuApf+DWEkXd6j5T17Lw=,tag:VzUwTP2+w8iwwkZOjMbdCQ==,type:str]
+        #ENC[AES256_GCM,data:QRLnzdJ/lmaItppUMOZO33kySISWDfMdjr2nrEjBuhucnoglEVNF9Wy5IVbt5CNERajCADTVWNy/N40uCv+9n3PQVKl+Ki6YV+Q24Bzy,iv:8PvJ2yU7AW+/XkP+/9OQcrdCVAomnRexkNNw+2rjoho=,tag:U4gbrqqBwvXC63qn7jFmPQ==,type:comment]
+        #ENC[AES256_GCM,data:69gagNeejZaafGWo/Rll,iv:kW13FOrc/j//BxVj4JgEC0G/DQIOPHil0uNXpOM2/W0=,tag:sqviMlgQHiN397ukswoNsg==,type:comment]
+        #ENC[AES256_GCM,data:C8ta7Vtb3LpOotE=,iv:Kdat2trhQIQHxIpD7xhUoLRYo+a4PgzpB+S0w32somA=,tag:jgH656M8a14QhA//sN6MGg==,type:comment]
+        password: ENC[AES256_GCM,data:qdV5FH2K4w9gj4SFznfflY8Uw3ohSCO4lOE4Hea4,iv:/XYT2xiHlfRB1NLkw+Qm/QaWehvs9v8PUp2ZfMxeyRA=,tag:06XSi3K7y+9a50nZK1LAfQ==,type:str]
 sops:
     kms: []
     gcp_kms: []
@@ -16,8 +19,8 @@ sops:
             MGNDV2cvUUF3dWZHSlZNeVFDNXhzalkKubKuiiZuqoZTvRMr2FiUxnFUu+Pvj3Wf
             pZTfZg9rnUukmV+kmwqQKcfoPNfeShhoAsszWwPM628cV9pq87I2/A==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-07-29T17:44:01Z"
-    mac: ENC[AES256_GCM,data:iV7/1P+LppuGxIE0djzw/Vc/GCSRPsdclx6je9f1UHgg7FV9rjdqCr0lN/JfcqOC9z/HfPoQX3cWh3hADABKV+8DvYtFGfIYIbt1+wdg7xM7pAXh6ffsOK8iOg9Fy1L1AoHe61W8Wmp5I5woExTUSRb3ZdNNIcBSjUbRhjAtYZ4=,iv:HJ9joQgY3xdJWQhGiqEmS3Ei95TbFM4ocQ99n2N+e4Q=,tag:W3D7YMLvMPVYGmDO1oClPQ==,type:str]
+    lastmodified: "2023-07-29T20:22:15Z"
+    mac: ENC[AES256_GCM,data:DIdcvQXu7rivXdPFPjfzs1AeJ5bRvUBD+Hq9mH7Hp/+iqrG03fWSF2NF1ra8KfEIg6TDsyMnQLWvipxBlA654BLBNrABFoGwLsdVsATBORz0kNNY862qfyhSOaaTBHTWhPVpbjGnYav+bi5pfvbLC9yJm3SjIRtUbnaNVWvqMq0=,iv:d7SaPZLb/px7fy+bGJnH3bfNBmqbhwMijyNB0jfYgLE=,tag:LT5hJoDcSiP5FVgj0M2sCA==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.7.3
diff --git a/badhouseplants/values/values.gitea.yaml b/badhouseplants/values/values.gitea.yaml
index 7fed6e9..b2e5639 100644
--- a/badhouseplants/values/values.gitea.yaml
+++ b/badhouseplants/values/values.gitea.yaml
@@ -94,19 +94,13 @@ gitea:
     oauth2_client:
       REGISTER_EMAIL_CONFIRM: false
       ENABLE_AUTO_REGISTRATION: true
-    # --------------------------------------
-    # -- Redis settings
-    # --------------------------------------
     session:
       PROVIDER: redis
-      PROVIDER_CONFIG: redis://:gtCkXoSg82Aeimj5WYYX@redis-master.database-service.svc.cluster.local:6379/2?pool_size=100&idle_timeout=180s&
     cache:
       ENABLED: true
       ADAPTER: redis
-      HOST: redis://:gtCkXoSg82Aeimj5WYYX@redis-master.database-service.svc.cluster.local:6379/2?pool_size=100&idle_timeout=180s&
     queue:
       TYPE: redis
-      CONN_STR: redis://:gtCkXoSg82Aeimj5WYYX@redis-master.database-service.svc.cluster.local:6379/2?pool_size=100&idle_timeout=180s&
 service:
   ssh:
     type: ClusterIP