Phase 1: Prerequisites & Secrets

Duration: 30-45 minutes
Purpose: Gather all required credentials and tokens before infrastructure deployment
Dependencies: None

Overview

Before deploying the Blueberry IDP infrastructure, you need to gather several credentials and tokens from different services. This phase ensures you have everything needed for a smooth deployment.

📋 Checklist

• [ ] GitLab OAuth Application - For ArgoCD authentication
• [ ] Slack Webhook URL - For CI/CD notifications
• [ ] Cloudflare API Token - For DNS management
• [ ] GitLab Personal Access Token - For Terraform GitLab provider
• [ ] Complete Secrets Validation - Verify all credentials

🎯 Success Criteria

After completing this phase, you should have:

1. GitLab OAuth Client ID and Secret - For ArgoCD GitLab integration
2. Slack Webhook URL - For pipeline notifications to #blueberry-ci
3. Cloudflare API Token - With Zone:DNS:Edit permissions
4. GitLab PAT - With API scope for Terraform operations
5. All credentials recorded - In your .env file template

⏭️ Next Phase

Once all prerequisites are gathered, proceed to Phase 2: Infrastructure Setup

🔒 Security Notes

• Never commit secrets to version control
• Use environment variables for sensitive values
• Store production secrets in Secret Manager
• Rotate credentials regularly (quarterly recommended)

📚 Quick Links

• GitLab OAuth Setup
• Slack Webhook Setup
• Cloudflare API Setup
• GitLab PAT Setup
• Secrets Checklist