wip: Gateway Setup
This commit is contained in:
@@ -14,11 +14,36 @@ spec:
|
||||
- path:
|
||||
type: PathPrefix
|
||||
value: "/"
|
||||
timeouts:
|
||||
request: 600s
|
||||
backendRequest: 600s
|
||||
backendRefs:
|
||||
- name: gitea-http
|
||||
port: 3000
|
||||
|
||||
---
|
||||
apiVersion: cilium.io/v2
|
||||
kind: CiliumNetworkPolicy
|
||||
metadata:
|
||||
name: allow-gateway-to-gitea
|
||||
namespace: gitea
|
||||
spec:
|
||||
endpointSelector:
|
||||
matchLabels:
|
||||
app.kubernetes.io/name: gitea
|
||||
ingress:
|
||||
- fromCIDRSet:
|
||||
- cidr: 10.0.0.0/8
|
||||
- cidr: 172.16.0.0/12
|
||||
- cidr: 192.168.0.0/16
|
||||
- cidr: 172.19.255.0/24
|
||||
- cidr: 100.64.0.0/12
|
||||
- cidr: 185.125.160.4/32
|
||||
- cidr: 37.27.203.38/32
|
||||
- fromEndpoints:
|
||||
- matchLabels:
|
||||
"k8s:io.kubernetes.pod.namespace": gitea
|
||||
---
|
||||
apiVersion: gateway.networking.k8s.io/v1alpha2
|
||||
kind: TCPRoute
|
||||
metadata:
|
||||
|
||||
@@ -0,0 +1,8 @@
|
||||
{{- /* Gateway API: disable ingress when cilium gateway is enabled (HTTPRoute is in manifests/gateway-routes.yaml) */ -}}
|
||||
{{- if .Values.clusterConfig.gatewayAPI.enabled }}
|
||||
ingress:
|
||||
enabled: false
|
||||
{{- else }}
|
||||
ingress:
|
||||
enabled: true
|
||||
{{- end }}
|
||||
Reference in New Issue
Block a user