From da548a227cc5a26bb68dff1dc0e0d82559499518 Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Thu, 19 Mar 2026 23:26:02 +1100 Subject: [PATCH] fix: external access to puppetdb (#53) - use vault cert for puppetdb ingress Reviewed-on: https://git.unkin.net/unkin/argocd-apps/pulls/53 --- apps/base/puppet/ingress_puppetdb.yaml | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/apps/base/puppet/ingress_puppetdb.yaml b/apps/base/puppet/ingress_puppetdb.yaml index 055407a..4f28a7f 100644 --- a/apps/base/puppet/ingress_puppetdb.yaml +++ b/apps/base/puppet/ingress_puppetdb.yaml @@ -7,7 +7,7 @@ metadata: external-dns.alpha.kubernetes.io/hostname: puppetdb.k8s.syd1.au.unkin.net external-dns.alpha.kubernetes.io/target: 198.18.200.0 cert-manager.io/cluster-issuer: vault-issuer - cert-manager.io/common-name: puppetboard.k8s.syd1.au.unkin.net + cert-manager.io/common-name: puppetdb.k8s.syd1.au.unkin.net cert-manager.io/private-key-size: "4096" labels: app.kubernetes.io/component: puppetdb @@ -28,3 +28,7 @@ spec: number: 8080 path: / pathType: Prefix + tls: + - hosts: + - puppetdb.k8s.syd1.au.unkin.net + secretName: puppetdb-tls -- 2.47.3