fix(gitea): override DOMAIN/ROOT_URL with SOVEREIGN_FQDN (D25) (#1545)

Chart values.yaml ships `gitea.gitea.config.server.DOMAIN = gitea.catalyst.local` + `ROOT_URL = https://gitea.catalyst.local` — the bootstrap dev hostname. Without per-Sovereign override, Gitea's Web UI rendered the dev hostname in pageData.appUrl, internal links, and `git clone` URLs. Operators on every freshly-provisioned Sovereign were shown a gitea.catalyst.local hostname that public DNS can't resolve. Slot 10-gitea Kustomization adds the per-Sovereign override: gitea.gitea.config.server.DOMAIN: gitea.${SOVEREIGN_FQDN} gitea.gitea.config.server.ROOT_URL: https://gitea.${SOVEREIGN_FQDN} Caught on t129 2026-05-16 — DoD D25. Co-authored-by: hatiyildiz <hatice.yildiz@openova.io> Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-16 19:57:43 +04:00 · 2026-05-16 19:57:43 +04:00 · d7b2c017f1
commit d7b2c017f1
parent 9e47fd122a
1 changed files with 13 additions and 0 deletions
--- a/clusters/_template/bootstrap-kit/10-gitea.yaml
+++ b/clusters/_template/bootstrap-kit/10-gitea.yaml
@ -83,3 +83,16 @@ spec:
    # cilium-gateway from clusters/_template/bootstrap-kit/01-cilium.yaml.
    gateway:
      host: gitea.${SOVEREIGN_FQDN}
+    # DoD D25 (t129 2026-05-16): override the chart's baked dev hostname
+    # `gitea.catalyst.local` so the Gitea Web UI renders the LIVE
+    # Sovereign FQDN in pageData.appUrl, clone URLs, and internal links.
+    # Without this every Sovereign's Gitea page told the operator to
+    # clone from `gitea.catalyst.local` (which public DNS can't resolve),
+    # breaking the canonical "Sovereign-local Git server" contract that
+    # bp-self-sovereign-cutover relies on.
+    gitea:
+      gitea:
+        config:
+          server:
+            DOMAIN: gitea.${SOVEREIGN_FQDN}
+            ROOT_URL: https://gitea.${SOVEREIGN_FQDN}