From 107dd520b31b028b07a581710ab21f41512eb2d3 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Sat, 10 May 2025 10:41:51 -0500 Subject: [PATCH] update --- dmz/authentik/templates/cert.yaml | 56 ++++++++++----- dmz/internalproxy/templates/authentik.yaml | 84 +++++++++++----------- 2 files changed, 81 insertions(+), 59 deletions(-) diff --git a/dmz/authentik/templates/cert.yaml b/dmz/authentik/templates/cert.yaml index f920c99..e9990dd 100644 --- a/dmz/authentik/templates/cert.yaml +++ b/dmz/authentik/templates/cert.yaml @@ -1,20 +1,3 @@ -apiVersion: traefik.io/v1alpha1 -kind: IngressRoute -metadata: - name: auth-ingress -spec: - entryPoints: - - websecure - routes: - - match: Host(`auth.durp.info`) && PathPrefix(`/`) - kind: Rule - services: - - name: ak-outpost-dmz-embedded-outpost - port: 9000 - tls: - secretName: authentik-outpost-tls - ---- apiVersion: cert-manager.io/v1 kind: Certificate metadata: @@ -28,3 +11,42 @@ spec: dnsNames: - "authentik.durp.info" - "authentik.durp.info" + +--- +apiVersion: traefik.io/v1alpha1 +kind: IngressRoute +metadata: + name: authentik-ingress +spec: + entryPoints: + - websecure + routes: + - match: Host(`authentik.durp.info`) && PathPrefix(`/`) + kind: Rule + services: + - name: infra-cluster + port: 443 + tls: + secretName: authentik-outpost-tls + +--- +kind: Service +apiVersion: v1 +metadata: + name: authentik-external-dns + annotations: + external-dns.alpha.kubernetes.io/hostname: authentik.durp.info +spec: + type: ExternalName + externalName: durp.info + +--- +apiVersion: v1 +kind: Endpoints +metadata: + name: infra-cluster +subsets: + - addresses: + - ip: 192.168.12.130 + ports: + - port: 443 diff --git a/dmz/internalproxy/templates/authentik.yaml b/dmz/internalproxy/templates/authentik.yaml index 2d74aae..af6e4e3 100644 --- a/dmz/internalproxy/templates/authentik.yaml +++ b/dmz/internalproxy/templates/authentik.yaml @@ -1,42 +1,42 @@ -apiVersion: traefik.io/v1alpha1 -kind: IngressRoute -metadata: - name: authentik-ingress -spec: - entryPoints: - - websecure - routes: - - match: Host(`authentik.durp.info`) && PathPrefix(`/`) - kind: Rule - services: - - name: infra-cluster - port: 443 - tls: - secretName: authentik-tls - ---- - -apiVersion: cert-manager.io/v1 -kind: Certificate -metadata: - name: authentik-tls -spec: - issuerRef: - name: letsencrypt-production - kind: ClusterIssuer - secretName: authentik-tls - commonName: "authentik.durp.info" - dnsNames: - - "authentik.durp.info" - ---- - -kind: Service -apiVersion: v1 -metadata: - name: authentik-external-dns - annotations: - external-dns.alpha.kubernetes.io/hostname: authentik.durp.info -spec: - type: ExternalName - externalName: durp.info +#apiVersion: traefik.io/v1alpha1 +#kind: IngressRoute +#metadata: +# name: authentik-ingress +#spec: +# entryPoints: +# - websecure +# routes: +# - match: Host(`authentik.durp.info`) && PathPrefix(`/`) +# kind: Rule +# services: +# - name: infra-cluster +# port: 443 +# tls: +# secretName: authentik-tls +# +#--- +# +#apiVersion: cert-manager.io/v1 +#kind: Certificate +#metadata: +# name: authentik-tls +#spec: +# issuerRef: +# name: letsencrypt-production +# kind: ClusterIssuer +# secretName: authentik-tls +# commonName: "authentik.durp.info" +# dnsNames: +# - "authentik.durp.info" +# +#--- +# +#kind: Service +#apiVersion: v1 +#metadata: +# name: authentik-external-dns +# annotations: +# external-dns.alpha.kubernetes.io/hostname: authentik.durp.info +#spec: +# type: ExternalName +# externalName: durp.info