Fix bootstrap secrets

bbedward · bbedward · commit 86fbe07e622f · 2025-06-05T16:28:42.000-04:00
diff --git a/cmd/api/bootstrap.go b/cmd/api/bootstrap.go
@@ -230,6 +230,37 @@ func (self *Bootstrapper) bootstrapTeam(ctx context.Context) error {
 		return fmt.Errorf("failed to query team count: %w", err)
 	}
 	if teamCount > 0 {
+		// Bootstrap registry secrets if needed
+		registries, err := self.repos.Ent().Registry.Query().All(ctx)
+		if err != nil {
+			return fmt.Errorf("failed to query registries: %w", err)
+		}
+		teams, err := self.repos.Ent().Team.Query().All(ctx)
+		if err != nil {
+			return fmt.Errorf("failed to query teams: %w", err)
+		}
+		for _, reg := range registries {
+			for _, team := range teams {
+				if reg.KubernetesSecret != "" {
+					// Check existence
+					secretName := reg.KubernetesSecret
+					_, err := self.kubeClient.GetSecret(ctx, secretName, team.Namespace, self.kubeClient.GetInternalClient())
+					if err != nil {
+						if !errors.IsNotFound(err) {
+							return fmt.Errorf("failed to get secret %s in team namespace %s: %w", secretName, team.Namespace, err)
+						}
+					}
+					if errors.IsNotFound(err) {
+						// Copy
+						_, err = self.kubeClient.CopySecret(ctx, secretName, self.cfg.SystemNamespace, team.Namespace, self.kubeClient.GetInternalClient())
+						if err != nil {
+							log.Warnf("Failed to copy registry secret %s to team namespace %s: %v", secretName, team.Namespace, err)
+						}
+					}
+				}
+			}
+		}
+
 		return nil
 	}
 
