From 35f613793245c6c8b98191abd7dcd6883e878277 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Sun, 16 Apr 2023 12:25:50 +0000 Subject: [PATCH] Update 2 files - /internalproxy/templates/mothership-ingress.yaml - /internalproxy/templates/overlord-ingress.yaml --- .../templates/mothership-ingress.yaml | 33 ------------ internalproxy/templates/overlord-ingress.yaml | 51 +++++++++++-------- 2 files changed, 31 insertions(+), 53 deletions(-) diff --git a/internalproxy/templates/mothership-ingress.yaml b/internalproxy/templates/mothership-ingress.yaml index 0298b67..4291f73 100644 --- a/internalproxy/templates/mothership-ingress.yaml +++ b/internalproxy/templates/mothership-ingress.yaml @@ -25,39 +25,6 @@ subsets: port: 8006 protocol: TCP -#--- -# -#apiVersion: networking.k8s.io/v1 -#kind: Ingress -#metadata: -# name: mothership-ingress -# annotations: -# kubernetes.io/ingress.class: nginx -# cert-manager.io/cluster-issuer: letsencrypt-production -# nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.0.0/16" -# nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" -# nginx.ingress.kubernetes.io/proxy-buffering: "off" -# nginx.ingress.kubernetes.io/proxy-connect-timeout: "3600s" -# nginx.ingress.kubernetes.io/proxy_read_timeout: "3600s" -# nginx.ingress.kubernetes.io/proxy_send_timeout: "3600s" -# nginx.ingress.kubernetes.io/client_max_body_size: "5120m" -#spec: -# rules: -# - host: mothership.internal.durp.info -# http: -# paths: -# - path: / -# pathType: Prefix -# backend: -# service: -# name: mothership -# port: -# number: 8006 -# tls: -# - hosts: -# - mothership.internal.durp.info -# secretName: mothership-tls -# --- apiVersion: traefik.containo.us/v1alpha1 diff --git a/internalproxy/templates/overlord-ingress.yaml b/internalproxy/templates/overlord-ingress.yaml index 3f85c3d..2c8bfb9 100644 --- a/internalproxy/templates/overlord-ingress.yaml +++ b/internalproxy/templates/overlord-ingress.yaml @@ -27,28 +27,39 @@ subsets: --- -apiVersion: networking.k8s.io/v1 -kind: Ingress +apiVersion: traefik.containo.us/v1alpha1 +kind: IngressRoute metadata: name: overlord-ingress annotations: - kubernetes.io/ingress.class: nginx - cert-manager.io/cluster-issuer: letsencrypt-production - nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.0.0/16" - nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" + cert-manager.io/cluster-issuer: letsencrypt-production spec: - rules: - - host: overlord.internal.durp.info - http: - paths: - - path: / - pathType: Prefix - backend: - service: - name: overlord - port: - number: 8006 + entryPoints: + - websecure + routes: + - match: Host(`overlord.internal.durp.info`) + middlewares: + - name: whitelist + namespace: traefik + kind: Rule + services: + - name: overlord + port: 8006 + scheme: https tls: - - hosts: - - overlord.internal.durp.info - secretName: overlord-tls + secretName: overlord-tls + +--- + +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: overlord-tls +spec: + secretName: overlord-tls + issuerRef: + name: letsencrypt-production + kind: ClusterIssuer + commonName: "overlord.internal.durp.info" + dnsNames: + - "overlord.internal.durp.info" \ No newline at end of file