From c94e0e0163a8d0b29ea154b4cb7d79b194c42da6 Mon Sep 17 00:00:00 2001
From: Finn <finn@finn.io>
Date: Wed, 30 Oct 2024 00:00:57 -0700
Subject: [PATCH] bump auto-deploy cert expiration time

Apparently there's an alert that goes off if a cert expiring in less than 7 days is used to authenticate to k8s
---
 k8s/forgejo/forgejo-secret-sync/forgejo-secret-sync.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/k8s/forgejo/forgejo-secret-sync/forgejo-secret-sync.py b/k8s/forgejo/forgejo-secret-sync/forgejo-secret-sync.py
index e1fd554..eb635dd 100644
--- a/k8s/forgejo/forgejo-secret-sync/forgejo-secret-sync.py
+++ b/k8s/forgejo/forgejo-secret-sync/forgejo-secret-sync.py
@@ -40,7 +40,7 @@ def update_cert(k8s_name: str, owner: str, repo: str):
             "/var/lib/rancher/k3s/server/tls/client-ca.key",
             "-CAcreateserial",
             "-days",
-            "2",
+            "10",
         ],
         stdin=req,
     )