alex/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

working on kubernetes with tls and tailscale

Browse Source
This commit is contained in:
Alex Mickelson
2025-01-13 22:45:14 -07:00
parent 92b2bb78c0
commit 7a8e17d79d
5 changed files with 15 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
kubernetes/cloudflare-issuer/issuer.yml
View File

@@ -1,8 +1,8 @@
# issuer.yml # issuer.yml
apiVersion: cert-manager.io/v1 apiVersion: cert-manager.io/v1
kind: Issuer kind: ClusterIssuer # global across namespaces
metadata: metadata:
name: ca-issuer name: cloudflare-issuer
spec: spec:
acme: acme:
email: alexmickelson96@gmail.com email: alexmickelson96@gmail.com

2
kubernetes/cloudflare-issuer/Readme.md → kubernetes/cloudflare-issuer/readme.md
View File

@@ -15,7 +15,7 @@ helm install \
<https://medium.com/@kevinlutzer9/managed-ssl-certs-for-a-private-kubernetes-cluster-with-cloudflare-cert-manager-and-lets-encrypt-7987ba19044f> <https://medium.com/@kevinlutzer9/managed-ssl-certs-for-a-private-kubernetes-cluster-with-cloudflare-cert-manager-and-lets-encrypt-7987ba19044f>
```bash ```bash
kubectl create secret generic cloudflare-api-key-secret --from-literal=api-key=<TOKEN> kubectl create -n cert-manager secret generic cloudflare-api-key-secret --from-literal=api-key=<TOKEN>
``` ```

19
kubernetes/gitea/web.yml
View File

@@ -78,18 +78,21 @@ kind: Ingress
metadata: metadata:
name: gitea name: gitea
namespace: projects namespace: projects
annotations:
cert-manager.io/cluster-issuer: cloudflare-issuer
spec: spec:
ingressClassName: tailscale ingressClassName: tailscale
tls: tls:
- hosts: - hosts:
- gitea - gitea.alexmickelson.guru
secretName: gitea-tls-cert
rules: rules:
- http: - http:
paths: paths:
- path: / - path: /
pathType: Prefix pathType: Prefix
backend: backend:
service: service:
name: gitea-web-svc name: gitea-web-svc
port: port:
number: 3000 number: 3000

0
kubernetes/Readme.md → kubernetes/readme.md
View File

1
nix/home-manager/desktop.home.nix
View File

@@ -10,6 +10,7 @@
# fira-code # fira-code
(nerdfonts.override { fonts = [ "FiraCode" "DroidSansMono" ]; }) (nerdfonts.override { fonts = [ "FiraCode" "DroidSansMono" ]; })
kubernetes-helm kubernetes-helm
busybox
]; ];
fonts.fontconfig.enable = true; fonts.fontconfig.enable = true;
dconf.enable = true; dconf.enable = true;