feat: set traefik's tls secret to what is generated by cert-manager
This commit is contained in:
parent
c1f4347ed2
commit
4b281683d9
GPG Key ID:
FEC9E2FC15235964
|
|
@ -87,7 +87,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
monitoring:
|
||||
enabled: false # temporarily disable monitoring
|
||||
|
|
@ -85,7 +85,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *console-host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
s3:
|
||||
enabled: true
|
||||
|
|
@ -109,7 +108,6 @@ spec:
|
|||
- hosts:
|
||||
- *api-host
|
||||
- *api-host-wildcard
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
podSecurityContext:
|
||||
runAsUser: 10000
|
||||
|
|
|
|||
|
|
@ -27,7 +27,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
# securityContext:
|
||||
# runAsUser: 10000
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
data:
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
podSecurityContext:
|
||||
runAsNonRoot: true
|
||||
|
|
|
|||
|
|
@ -44,7 +44,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
firefly-uploads:
|
||||
|
|
|
|||
|
|
@ -43,7 +43,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
storage:
|
||||
|
|
|
|||
|
|
@ -56,7 +56,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
# persistence:
|
||||
# config:
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -51,7 +51,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -91,7 +91,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -96,7 +96,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
storage:
|
||||
|
|
|
|||
|
|
@ -91,7 +91,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -92,7 +92,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -92,7 +92,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -92,7 +92,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
persistence:
|
||||
config:
|
||||
enabled: true
|
||||
|
|
|
|||
|
|
@ -67,7 +67,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -54,7 +54,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -43,7 +43,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -45,7 +45,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -49,7 +49,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -40,7 +40,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
persistence:
|
||||
config:
|
||||
enabled: true
|
||||
|
|
|
|||
|
|
@ -46,7 +46,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -45,7 +45,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -57,7 +57,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -47,7 +47,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -26,7 +26,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *grafana-host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
grafana.ini:
|
||||
server:
|
||||
|
|
|
|||
|
|
@ -31,7 +31,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *alertmanager-host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
alertmanagerSpec:
|
||||
alertmanagerConfiguration:
|
||||
|
|
@ -57,7 +56,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *prometheus-host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
prometheusSpec:
|
||||
enableAdminAPI: false
|
||||
|
|
|
|||
|
|
@ -46,7 +46,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
config:
|
||||
|
|
|
|||
|
|
@ -60,7 +60,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
resources:
|
||||
requests:
|
||||
|
|
|
|||
|
|
@ -57,7 +57,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
resources:
|
||||
requests:
|
||||
|
|
|
|||
|
|
@ -43,7 +43,6 @@ spec:
|
|||
tls:
|
||||
- hosts:
|
||||
- *host
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
persistence:
|
||||
data:
|
||||
|
|
|
|||
|
|
@ -8,7 +8,7 @@ spec:
|
|||
|
||||
secretTemplate:
|
||||
annotations:
|
||||
replicator.v1.mittwald.de/replicate-to: "traefik,download,media,tools,management,authentik,database,monitoring"
|
||||
replicator.v1.mittwald.de/replicate-to: "traefik"
|
||||
|
||||
duration: 2160h # 90d
|
||||
renewBefore: 360h # 15d
|
||||
|
|
|
|||
|
|
@ -0,0 +1,9 @@
|
|||
apiVersion: traefik.io/v1alpha1
|
||||
kind: TLSStore
|
||||
metadata:
|
||||
name: default
|
||||
namespace: traefik
|
||||
|
||||
spec:
|
||||
defaultCertificate:
|
||||
secretName: wildcard-main-tls
|
||||
|
|
@ -79,7 +79,6 @@ spec:
|
|||
tlsStore:
|
||||
default:
|
||||
defaultCertificate:
|
||||
secretName: wildcard-main-tls
|
||||
|
||||
metrics:
|
||||
prometheus:
|
||||
|
|
|
|||
|
|
@ -4,4 +4,5 @@ resources:
|
|||
- ./namespace.yaml
|
||||
- ./helm-repository.yaml
|
||||
- ./helm-release.yaml
|
||||
- ./default-tls-store.yaml
|
||||
- ./dashboard-ingress.yaml
|
||||
Loading…
Reference in New Issue