DeveloperDurp/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
DeveloperDurp
2025-05-10 08:55:17 -05:00
parent 04da18d4ee
commit 9514ffc44a
2 changed files with 42 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
dmz/traefik/templates/middleware.yaml
View File

@@ -21,7 +21,6 @@ spec:
- X-authentik-meta-version - X-authentik-meta-version
--- ---
apiVersion: traefik.io/v1alpha1 apiVersion: traefik.io/v1alpha1
kind: Middleware kind: Middleware
metadata: metadata:
@@ -33,3 +32,22 @@ spec:
- 192.168.0.0/16 - 192.168.0.0/16
- 172.16.0.0/12 - 172.16.0.0/12
- 10.0.0.0/8 - 10.0.0.0/8
---
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
name: bouncer
namespace: traefik
spec:
plugin:
bouncer:
enabled: true
crowdsecMode: stream
crowdsecLapiScheme: https
crowdsecLapiHost: crowdsec-service.crowdsec:8080
crowdsecLapiKey:
valueFrom:
secretKeyRef:
name: crowdsec-lapi-key
key: lapi-key

21
dmz/traefik/templates/secrets.yaml Normal file
View File

@@ -0,0 +1,21 @@
apiVersion: external-secrets.io/v1beta1
kind: ExternalSecret
metadata:
name: crowdsec-lapi-key
spec:
secretStoreRef:
name: vault
kind: ClusterSecretStore
target:
name: crowdsec-lapi-key
data:
- secretKey: lapi-key
remoteRef:
key: kv/crowdsec/api
property: key
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: vault