Skip to content

Commit c1178a5

Browse files
onelrianonelrian
committed
wip: working on the deployment of selfhosted netbird for ha environment
1 parent 560b045 commit c1178a5

File tree

31 files changed

+4413
-249
lines changed

31 files changed

+4413
-249
lines changed

.gitignore

Lines changed: 49 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,16 +45,64 @@ machinekey/
4545
Chart.lock
4646
monitor-netbird/kubernetes/helm/monitoring-stack/charts/_loki/
4747

48+
# ============================================================================
49+
# TERRAFORM - SECRETS & STATE
50+
# ============================================================================
4851
# Ignore Terraform state and binaries
4952
**/.terraform/*
5053
*.tfstate
5154
*.tfstate.backup
5255
.terraform.lock.hcl
56+
57+
# ⚠️ CRITICAL: Never commit Terraform variable files with secrets
58+
*.tfvars # All .tfvars files (contains real secrets)
59+
*.tfvars.json # JSON format .tfvars
60+
*.tfvars.secret # Explicitly marked secret tfvars
61+
terraform.tfvars # Default tfvars file
62+
terraform.tfvars.json # Default JSON tfvars
63+
64+
# ============================================================================
65+
# ANSIBLE - SECRETS & INVENTORY
66+
# ============================================================================
67+
# Never commit generated Ansible inventory with real values
68+
**/inventory/terraform_inventory.yaml # Auto-generated from Terraform
69+
**/inventory/terraform_inventory.json # Auto-generated from Terraform
70+
71+
# Ansible vault files and encrypted data
72+
**/*.vault
73+
**/*vault*
74+
**/ansible-vault
75+
**/vault-password*
76+
**/vault.yml
77+
78+
# ============================================================================
79+
# SSH & CREDENTIALS
80+
# ============================================================================
81+
# Never commit private SSH keys
82+
**/private_key
83+
**/private_key.*
84+
**/id_rsa
85+
**/id_rsa.*
86+
**/*.pem
87+
**/*.key
88+
**/*_key
89+
90+
# ============================================================================
91+
# ENVIRONMENT & CONFIGURATION
92+
# ============================================================================
5393
.env
94+
.env.local
95+
.env.*.local
96+
.env.production.local
97+
.env.secrets
98+
*.env
99+
100+
# ============================================================================
101+
# IDE & EDITOR
102+
# ============================================================================
54103
.quodo
55104
.vivus
56105
.agent
57-
*.tfvars
58106
.elastic-copilot
59107
.zencoder
60108
.zenflow

0 commit comments

Comments
 (0)