installer: app value templates
diff --git a/core/installer/values-tmpl/ingress-private.yaml b/core/installer/values-tmpl/ingress-private.yaml
index 55405ac..5696f62 100644
--- a/core/installer/values-tmpl/ingress-private.yaml
+++ b/core/installer/values-tmpl/ingress-private.yaml
@@ -16,7 +16,7 @@
pcloudInstanceId: {{ .Global.Id }}
namespacePrefix: {{ .Global.NamespacePrefix }}
namespaces:
- - app-ingress-private
+ - ingress-private
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
@@ -63,7 +63,8 @@
controller:
service:
enabled: true
- type: ClusterIP
+ type: LoadBalancer
+ loadBalancerIP: {{ .Values.ReservedIP }}
ingressClassByName: true
ingressClassResource:
name: {{ .Global.Id }}-ingress-private
@@ -72,26 +73,3 @@
controllerValue: k8s.io/{{ .Global.Id }}-ingress-private
extraArgs:
default-ssl-certificate: "{{ .Global.Id }}-ingress-private/cert-wildcard.p.{{ .Global.Domain }}"
- extraVolumes:
- - name: tailscale
- persistentVolumeClaim:
- claimName: tailscale
- extraVolumeMounts:
- - name: tailscale
- mountPath: /tailscale-state
- extraContainers:
- - name: tailscale
- image: tailscale/tailscale:v1.42.0
- imagePullPolicy: IfNotPresent
- securityContext:
- privileged: true
- capabilities:
- add:
- - NET_ADMIN
- env:
- - name: TS_KUBE_SECRET
- value: ""
- - name: TS_STATE_DIR
- value: /tailscale-state
- - name: TS_EXTRA_ARGS
- value: --hostname={{ .Global.PCloudEnvName }}-ingress --login-server=headscale.{{ .Global.Domain }} # TODO(gio): take headscale subdomain from configuration