helm-chart/templates/gitea/gpg-secret.yaml

{{- if .Values.signing.enabled -}}
{{- if and (empty .Values.signing.privateKey) (empty .Values.signing.existingSecret) -}}
  {{- fail "Either specify `signing.privateKey` or `signing.existingKey`" -}}
{{- end }}
{{- if and (not (empty .Values.signing.privateKey)) (empty .Values.signing.existingSecret) -}}
apiVersion: v1
kind: Secret
metadata:
  name: {{ include "gitea.gpg-key-secret-name" . }}
  labels:
    {{- include "gitea.labels" . | nindent 4 }}
type: Opaque
data:
  privateKey: {{ .Values.signing.privateKey | b64enc }}
{{- end }}
{{- end }}