From fccddfd7f30cac4d60225f5e9c67f0f7ed6514e9 Mon Sep 17 00:00:00 2001
From: Ryan Moon <moonryan2009@gmail.com>
Date: Fri, 3 Apr 2026 15:28:19 -0500
Subject: [PATCH] fix: use SSH deploy key to push to lunarfront-charts

---
 .gitea/workflows/build.yml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml
index 95694a0..65ac057 100644
--- a/.gitea/workflows/build.yml
+++ b/.gitea/workflows/build.yml
@@ -81,14 +81,18 @@ jobs:
 
       - name: Update charts
         run: |
-          git clone https://lunarfront-bot:${{ secrets.BOT_TOKEN }}@$GIT_REMOTE/ryan/lunarfront-charts.git /tmp/charts
+          mkdir -p ~/.ssh
+          echo "${{ secrets.CHARTS_DEPLOY_KEY }}" > ~/.ssh/charts_deploy_key
+          chmod 600 ~/.ssh/charts_deploy_key
+          echo "StrictHostKeyChecking no" >> ~/.ssh/config
+          GIT_SSH_COMMAND="ssh -i ~/.ssh/charts_deploy_key" git clone ssh://git@git-ssh.lunarfront.tech/ryan/lunarfront-charts.git /tmp/charts
           cd /tmp/charts
           sed -i "s|image: registry.digitalocean.com/lunarfront/manager:.*|image: registry.digitalocean.com/lunarfront/manager:${{ steps.version.outputs.version }}|" manager/deployment.yaml
           git config user.name "lunarfront-bot"
           git config user.email "bot@lunarfront.tech"
           git add manager/deployment.yaml
           git commit -m "chore: update manager image to v${{ steps.version.outputs.version }}"
-          git push origin main
+          GIT_SSH_COMMAND="ssh -i ~/.ssh/charts_deploy_key" git push origin main
 
       - name: Logout
         if: always()