From e7f8398f64bf67d30924f662b918f2b3b17cd5a0 Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Thu, 19 Mar 2026 23:24:48 +1100 Subject: [PATCH] fix: external access to puppetdb - use vault cert for puppetdb ingress --- apps/base/puppet/ingress_puppetdb.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/apps/base/puppet/ingress_puppetdb.yaml b/apps/base/puppet/ingress_puppetdb.yaml index 55c8679..055407a 100644 --- a/apps/base/puppet/ingress_puppetdb.yaml +++ b/apps/base/puppet/ingress_puppetdb.yaml @@ -6,7 +6,9 @@ metadata: kubernetes.io/ingress.class: nginx external-dns.alpha.kubernetes.io/hostname: puppetdb.k8s.syd1.au.unkin.net external-dns.alpha.kubernetes.io/target: 198.18.200.0 - nginx.ingress.kubernetes.io/ssl-passthrough: "true" + cert-manager.io/cluster-issuer: vault-issuer + cert-manager.io/common-name: puppetboard.k8s.syd1.au.unkin.net + cert-manager.io/private-key-size: "4096" labels: app.kubernetes.io/component: puppetdb app.kubernetes.io/instance: puppetserver