From 44d02b317c4630bbface19c62dd19ae4b95240b4 Mon Sep 17 00:00:00 2001 From: SeanOMik Date: Sat, 3 Feb 2024 23:16:50 -0500 Subject: [PATCH] fix: remove all manual usages of wildcard cert, only use traefik default cert --- cluster/apps/default/whoami/helm-release.yaml | 4 +--- cluster/apps/dev/woodpecker/helm-release.yaml | 4 +--- cluster/core/networking/traefik/dashboard-ingress.yaml | 4 +--- cluster/core/storage/longhorn/helm-release.yaml | 2 -- 4 files changed, 3 insertions(+), 11 deletions(-) diff --git a/cluster/apps/default/whoami/helm-release.yaml b/cluster/apps/default/whoami/helm-release.yaml index c8fcfbd..77a477a 100644 --- a/cluster/apps/default/whoami/helm-release.yaml +++ b/cluster/apps/default/whoami/helm-release.yaml @@ -33,7 +33,6 @@ spec: main: enabled: true annotations: - cert-manager.io/cluster-issuer: letsencrypt-production traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd hosts: @@ -43,5 +42,4 @@ spec: pathType: Prefix tls: - hosts: - - *host - secretName: wildcard-main-tls \ No newline at end of file + - *host \ No newline at end of file diff --git a/cluster/apps/dev/woodpecker/helm-release.yaml b/cluster/apps/dev/woodpecker/helm-release.yaml index 3171dcc..96901b0 100644 --- a/cluster/apps/dev/woodpecker/helm-release.yaml +++ b/cluster/apps/dev/woodpecker/helm-release.yaml @@ -64,7 +64,6 @@ spec: enabled: true annotations: - cert-manager.io/cluster-issuer: letsencrypt-production traefik.ingress.kubernetes.io/router.entrypoints: websecure hosts: @@ -75,5 +74,4 @@ spec: tls: - hosts: - - *host - secretName: wildcard-main-tls \ No newline at end of file + - *host \ No newline at end of file diff --git a/cluster/core/networking/traefik/dashboard-ingress.yaml b/cluster/core/networking/traefik/dashboard-ingress.yaml index 45ee06f..965ae98 100644 --- a/cluster/core/networking/traefik/dashboard-ingress.yaml +++ b/cluster/core/networking/traefik/dashboard-ingress.yaml @@ -4,7 +4,6 @@ metadata: name: traefik-dash-ingress namespace: traefik annotations: - cert-manager.io/cluster-issuer: letsencrypt-production traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd spec: @@ -22,5 +21,4 @@ spec: tls: - hosts: - "${SECRET_DOMAIN}" - - "traefik.${SECRET_DOMAIN}" - secretName: wildcard-main-tls \ No newline at end of file + - "traefik.${SECRET_DOMAIN}" \ No newline at end of file diff --git a/cluster/core/storage/longhorn/helm-release.yaml b/cluster/core/storage/longhorn/helm-release.yaml index 08ec7a0..3626cc7 100644 --- a/cluster/core/storage/longhorn/helm-release.yaml +++ b/cluster/core/storage/longhorn/helm-release.yaml @@ -21,12 +21,10 @@ spec: ingress: enabled: true annotations: - cert-manager.io/cluster-issuer: letsencrypt-production traefik.ingress.kubernetes.io/router.entrypoints: websecure traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd host: lnghrn.${SECRET_NEW_DOMAIN} tls: true - tlsSecret: wildcard-main-tls persistence: defaultClassReplicaCount: 1 # TODO: When the cluster expands, expand the replica count