clank/kubernetes-state
1
0
Fork 0
Code Issues 1 Pull Requests Projects Releases Wiki Activity

Add helm chart

Browse Source
This commit is contained in:
Kasper Juul Hermansen 2022-05-09 09:46:08 +02:00
parent 83a5b0d35f
commit f15efe40f6
Signed by: kjuulh
GPG Key ID: 0F95C140730F2F23
4 changed files with 40 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
clank/platform/cert-manager/certificate.yaml
View File

@ -1,25 +1,15 @@
apiVersion: cert-manager.io/v1 ---
kind: ClusterIssuer apiVersion: cert-manager.io/v1alpha2
kind: Certificate
metadata: metadata:
name: letsencrypt-issuer name: clank
namespace: kube-system
spec: spec:
acme: commonName: kjuulh.app
# You must replace this email address with your own. secretName: clank-cert
# Let's Encrypt will use this to contact you about expiring dnsNames:
# certificates, and issues related to your account. - kjuulh.app
email: contact@kjuulh.io - *.kjuulh.app
server: https://acme-staging-v02.api.letsencrypt.org/directory issuerRef:
privateKeySecretRef: name: letsencrypt-issuer
# Secret resource that will be used to store the account's private key. kind: ClusterIssuer
name: letsencrypt-issuer-secret
# Add a single challenge solver, HTTP01 using nginx
solvers:
- dns01:
cloudflare:
apiTokenSecretRef:
name: cloudflare-api-token-secret
key: api-token
selector:
dnsNames:
- 'kjuulh.app'
- '*.kjuulh.app'

25
clank/platform/cert-manager/cluster-issuer.yaml Normal file
View File

@ -0,0 +1,25 @@
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-issuer
spec:
acme:
# You must replace this email address with your own.
# Let's Encrypt will use this to contact you about expiring
# certificates, and issues related to your account.
email: contact@kjuulh.io
server: https://acme-staging-v02.api.letsencrypt.org/directory
privateKeySecretRef:
# Secret resource that will be used to store the account's private key.
name: letsencrypt-issuer-secret
# Add a single challenge solver, HTTP01 using nginx
solvers:
- dns01:
cloudflare:
apiTokenSecretRef:
name: cloudflare-api-token-secret
key: api-token
selector:
dnsNames:
- 'kjuulh.app'
- '*.kjuulh.app'

0
clank/platform/traefik/helm-chart-config.traefik.yaml Normal file
View File

2
clank/platform/traefik/ingress.yaml
View File

@ -14,3 +14,5 @@ spec:
services: # Service to redirect requests to services: # Service to redirect requests to
- name: api@internal # Special service created by Traefik pod - name: api@internal # Special service created by Traefik pod
kind: TraefikService kind: TraefikService
tls:
secretName: clank-cert