Skip to content

Commit

Permalink
use wildcard certificate
Browse files Browse the repository at this point in the history
  • Loading branch information
@erebe
erebe committed Feb 5, 2024
1 parent 977f089 commit 4d67d90
Show file tree
Hide file tree
Showing 8 changed files with 2 additions and 24 deletions.
1 change: 1 addition & 0 deletions Makefile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,7 @@ k8s:
kubectl apply -k k8s/nginx
kubectl apply -k k8s/cert-manager
kubectl apply -f k8s/lets-encrypt-issuer.yml
kubectl apply -f k8s/wildward-erebe-eu.yaml
kubectl delete secret gandi-credentials --namespace cert-manager || exit 0
kubectl create secret generic gandi-credentials --namespace cert-manager \
--from-literal=api-token="$(shell sops -d --extract '["apirest"]["key"]' secrets/gandi.yml)"
Expand Down
1 change: 1 addition & 0 deletions k8s/nginx/ingress-nginx-v1.4.0.yml.patch
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ spec:
- --validating-webhook=:8443
- --validating-webhook-certificate=/usr/local/certificates/cert
- --validating-webhook-key=/usr/local/certificates/key
- --default-ssl-certificate=default/erebe-eu-tls
- --https-port=444
- --http-port=81
ports:
Expand Down
4 changes: 0 additions & 4 deletions services/app/couber.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -79,10 +79,6 @@ metadata:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
ingressClassName: "nginx"
tls:
- hosts:
- coub.erebe.eu
secretName: couber-tls
rules:
- host: coub.erebe.eu
http:
Expand Down
4 changes: 0 additions & 4 deletions services/app/wstunnel.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -64,10 +64,6 @@ metadata:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
ingressClassName: "nginx"
tls:
- hosts:
- ws.erebe.eu
secretName: wstunnel-tls
rules:
- host: ws.erebe.eu
http:
Expand Down
4 changes: 0 additions & 4 deletions services/dashy/dashy.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -87,10 +87,6 @@ metadata:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
ingressClassName: "nginx"
tls:
- hosts:
- board.erebe.eu
secretName: dashy-tls
rules:
- host: board.erebe.eu
http:
Expand Down
4 changes: 0 additions & 4 deletions services/nextcloud/nextcloud.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -75,10 +75,6 @@ metadata:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
ingressClassName: "nginx"
tls:
- hosts:
- cloud.erebe.eu
secretName: nextcloud-tls
rules:
- host: cloud.erebe.eu
http:
Expand Down
4 changes: 0 additions & 4 deletions services/vaultwarden/vaultwarden.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -104,10 +104,6 @@ metadata:
nginx.ingress.kubernetes.io/ssl-redirect: "true"
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
tls:
- hosts:
- bitwarden.erebe.eu
secretName: vaultwarden-tls
ingressClassName: "nginx"
rules:
- host: bitwarden.erebe.eu
Expand Down
4 changes: 0 additions & 4 deletions services/webhook/webhook.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -102,10 +102,6 @@ metadata:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec:
ingressClassName: "nginx"
tls:
- hosts:
- hooks.erebe.eu
secretName: webhook-tls
rules:
- host: hooks.erebe.eu
http:
Expand Down

0 comments on commit 4d67d90

Please sign in to comment.