059992f6a3
- use vault cert for puppetdb ingress Reviewed-on: #53 Reviewed-on: #54
35 lines
975 B
YAML
35 lines
975 B
YAML
---
|
|
apiVersion: networking.k8s.io/v1
|
|
kind: Ingress
|
|
metadata:
|
|
annotations:
|
|
kubernetes.io/ingress.class: nginx
|
|
external-dns.alpha.kubernetes.io/hostname: puppetdb.k8s.syd1.au.unkin.net
|
|
external-dns.alpha.kubernetes.io/target: 198.18.200.0
|
|
cert-manager.io/cluster-issuer: vault-issuer
|
|
cert-manager.io/common-name: puppetdb.k8s.syd1.au.unkin.net
|
|
cert-manager.io/private-key-size: "4096"
|
|
labels:
|
|
app.kubernetes.io/component: puppetdb
|
|
app.kubernetes.io/instance: puppetserver
|
|
app.kubernetes.io/name: puppetserver
|
|
app.kubernetes.io/version: 8.8.0
|
|
name: puppetdb
|
|
namespace: puppet
|
|
spec:
|
|
rules:
|
|
- host: puppetdb.k8s.syd1.au.unkin.net
|
|
http:
|
|
paths:
|
|
- backend:
|
|
service:
|
|
name: puppetdb
|
|
port:
|
|
number: 8080
|
|
path: /
|
|
pathType: Prefix
|
|
tls:
|
|
- hosts:
|
|
- puppetdb.k8s.syd1.au.unkin.net
|
|
secretName: puppetdb-tls
|