fix: use correct mongo user password to instance config

kaustavb12 · kaustavb12 · commit 631102171c18 · 2025-11-23T17:19:53.000+05:30
SE-6524
diff --git a/manifests/phd-mongodb-provision-template.yml b/manifests/phd-mongodb-provision-template.yml
@@ -137,11 +137,12 @@ spec:
           #!/bin/sh
           set -e
 
+          NAMESPACE="{{workflow.parameters.namespace}}"
           DATABASE_NAME="{{workflow.parameters.database-name}}"
           USERNAME="{{workflow.parameters.username}}"
           PASSWORD="{{workflow.parameters.password}}"
           MONGODB_CLUSTER_ID="{{workflow.parameters.mongodb-cluster-id}}"
-          K8s_API_BEARER_TOKEN="{{k8s-api-bearer-token}}"
+          K8s_API_BEARER_TOKEN="{{workflow.parameters.k8s-api-bearer-token}}"
 
           echo "Creating user via DigitalOcean API: $USERNAME for database $DATABASE_NAME"
           echo "The current password is $PASSWORD"
@@ -166,12 +167,16 @@ spec:
 
           echo "Saving MongoDB user password to kubernetes secret"
 
-          echo "$K8s_API_BEARER_TOKEN"
-          cat /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
           BASE64_ENCODED_PASSWORD=$(echo -n "$PASSWORD" | base64)
-          echo "$BASE64_ENCODED_PASSWORD"
 
-          echo ""
+          K8S_RESPONSE=$(curl -s -X POST \
+            -H "Content-Type: application/json" \
+            -H "Authorization: $K8s_API_BEARER_TOKEN" \
+            --cacert /var/run/secrets/kubernetes.io/serviceaccount/ca.crt \
+            -d '{"apiVersion": "v1","kind": "Secret","metadata": {"name": "phd-mongodb-user-password","namespace": "$NAMESPACE"},"type": "Opaque","data": {"phd-mongodb-user-password": "$BASE64_ENCODED_PASSWORD"}}' \
+            "https://kubernetes.default.svc/api/v1/namespaces/$NAMESPACE/secrets")
+
+          echo "MongoDB user password saved to kubernetes secret \"phd-mongodb-user-password\" in namespace $NAMESPACE"
           echo "MongoDB provisioning completed (DigitalOcean API)"
 
 
