fix(cilium): Combine Gateways
This commit is contained in:
@@ -1,4 +1,4 @@
|
|||||||
{{- if .Values.cilium.gatewayTest.enabled }}
|
{{- if eq .Values.cilium.cluster "hel1" }}
|
||||||
# TODO: Move to ListernerSets when those get Promoted to GA
|
# TODO: Move to ListernerSets when those get Promoted to GA
|
||||||
# Resources:
|
# Resources:
|
||||||
# - https://gateway-api.sigs.k8s.io/geps/gep-1713/
|
# - https://gateway-api.sigs.k8s.io/geps/gep-1713/
|
||||||
@@ -9,6 +9,14 @@ metadata:
|
|||||||
name: shared-gateway
|
name: shared-gateway
|
||||||
namespace: kube-system
|
namespace: kube-system
|
||||||
spec:
|
spec:
|
||||||
|
infrastructure:
|
||||||
|
annotations:
|
||||||
|
load-balancer.hetzner.cloud/location: hel1
|
||||||
|
load-balancer.hetzner.cloud/type: lb11
|
||||||
|
load-balancer.hetzner.cloud/name: load-balancer-2
|
||||||
|
load-balancer.hetzner.cloud/use-private-ip: "true"
|
||||||
|
load-balancer.hetzner.cloud/uses-proxyprotocol: "true"
|
||||||
|
load-balancer.hetzner.cloud/http-redirect-https: "false"
|
||||||
gatewayClassName: cilium
|
gatewayClassName: cilium
|
||||||
listeners:
|
listeners:
|
||||||
- name: http
|
- name: http
|
||||||
@@ -42,4 +50,18 @@ spec:
|
|||||||
selector:
|
selector:
|
||||||
matchLabels:
|
matchLabels:
|
||||||
shared-gateway-access: "true"
|
shared-gateway-access: "true"
|
||||||
|
---
|
||||||
|
apiVersion: cert-manager.io/v1
|
||||||
|
kind: Certificate
|
||||||
|
metadata:
|
||||||
|
name: wildcard-oceanbox-io
|
||||||
|
spec:
|
||||||
|
secretName: wildcard-oceanbox-io
|
||||||
|
commonName: oceanbox.io
|
||||||
|
dnsNames:
|
||||||
|
- oceanbox.io
|
||||||
|
- "*.oceanbox.io"
|
||||||
|
issuerRef:
|
||||||
|
name: letsencrypt-production
|
||||||
|
kind: ClusterIssuer
|
||||||
{{- end}}
|
{{- end}}
|
||||||
|
|||||||
@@ -1,29 +0,0 @@
|
|||||||
{{- if eq .Values.cilium.cluster "hel1" }}
|
|
||||||
apiVersion: gateway.networking.k8s.io/v1
|
|
||||||
kind: Gateway
|
|
||||||
metadata:
|
|
||||||
name: shared-gateway
|
|
||||||
spec:
|
|
||||||
infrastructure:
|
|
||||||
annotations:
|
|
||||||
load-balancer.hetzner.cloud/location: hel1
|
|
||||||
load-balancer.hetzner.cloud/type: lb11
|
|
||||||
load-balancer.hetzner.cloud/name: load-balancer-2
|
|
||||||
load-balancer.hetzner.cloud/use-private-ip: "true"
|
|
||||||
load-balancer.hetzner.cloud/uses-proxyprotocol: "true"
|
|
||||||
load-balancer.hetzner.cloud/http-redirect-https: "false"
|
|
||||||
---
|
|
||||||
apiVersion: cert-manager.io/v1
|
|
||||||
kind: Certificate
|
|
||||||
metadata:
|
|
||||||
name: wildcard-oceanbox-io
|
|
||||||
spec:
|
|
||||||
secretName: wildcard-oceanbox-io
|
|
||||||
commonName: oceanbox.io
|
|
||||||
dnsNames:
|
|
||||||
- oceanbox.io
|
|
||||||
- "*.oceanbox.io"
|
|
||||||
issuerRef:
|
|
||||||
name: letsencrypt-production
|
|
||||||
kind: ClusterIssuer
|
|
||||||
{{- end }}
|
|
||||||
@@ -19,8 +19,6 @@ cilium:
|
|||||||
# NOTE: Requires that ingresscontroller is also enabled
|
# NOTE: Requires that ingresscontroller is also enabled
|
||||||
gatewayAPI:
|
gatewayAPI:
|
||||||
enabled: false
|
enabled: false
|
||||||
gatewayTest:
|
|
||||||
enabled: false
|
|
||||||
ingressController:
|
ingressController:
|
||||||
enabled: false
|
enabled: false
|
||||||
defaultClass: false
|
defaultClass: false
|
||||||
|
|||||||
@@ -61,7 +61,7 @@ nodePort:
|
|||||||
enabled: {{ .Values.cilium.nodePort.enabled }}
|
enabled: {{ .Values.cilium.nodePort.enabled }}
|
||||||
gatewayAPI:
|
gatewayAPI:
|
||||||
enabled: {{ .Values.cilium.gatewayAPI.enabled }}
|
enabled: {{ .Values.cilium.gatewayAPI.enabled }}
|
||||||
{{- if .Values.cilium.gatewayTest.enabled }}
|
{{- if eq .Values.cilium.cluster "hel1"}}
|
||||||
enableProxyProtocol: true
|
enableProxyProtocol: true
|
||||||
hostNetwork:
|
hostNetwork:
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|||||||
Reference in New Issue
Block a user