Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / ad59bfbf10bef9067ffead4f603753ecd38c1f8f / . / core / installer / values-tmpl / ingress-private.yaml
blob: e0fd9afedac1da009be7be4a08ab135d01c02d2a [file] [log] [blame]
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]1apiVersion: helm.toolkit.fluxcd.io/v2beta1
2kind: HelmRelease
3metadata:
Giorgi Lekveishviliacc4a632023-06-09 12:50:21 +0400[diff] [blame]4 name: namespaces-ingress-private
5 namespace: {{ .Global.Id }}
6spec:
7 chart:
8 spec:
9 chart: charts/namespaces
10 sourceRef:
11 kind: GitRepository
12 name: pcloud
13 namespace: {{ .Global.Id }}
14 interval: 1m0s
15 values:
16 pcloudInstanceId: {{ .Global.Id }}
17 namespacePrefix: {{ .Global.NamespacePrefix }}
18 namespaces:
19 - app-ingress-private
20---
21apiVersion: helm.toolkit.fluxcd.io/v2beta1
22kind: HelmRelease
23metadata:
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]24 name: ingress-private
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]25 namespace: {{ .Global.NamespacePrefix }}ingress-private
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]26spec:
Giorgi Lekveishviliacc4a632023-06-09 12:50:21 +0400[diff] [blame]27 dependsOn:
28 - name: namespaces-ingress-private
29 namespace: {{ .Global.Id }}
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]30 chart:
31 spec:
Giorgi Lekveishvili23ef7f82023-05-26 11:57:48 +0400[diff] [blame]32 chart: charts/ingress-nginx
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]33 sourceRef:
Giorgi Lekveishvili23ef7f82023-05-26 11:57:48 +0400[diff] [blame]34 kind: GitRepository
35 name: pcloud
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]36 namespace: {{ .Global.Id }}
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]37 interval: 1m0s
38 values:
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]39 fullnameOverride: {{ .Global.Id }}-nginx-private
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]40 controller:
41 service:
42 enabled: true
43 type: ClusterIP
44 ingressClassByName: true
45 ingressClassResource:
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]46 name: {{ .Global.Id }}-ingress-private
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]47 enabled: true
48 default: false
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]49 controllerValue: k8s.io/{{ .Global.Id }}-ingress-private
giolekva050609f2021-12-29 15:51:40 +0400[diff] [blame]50 extraArgs:
Giorgi Lekveishvili4d2784d2023-06-01 14:27:32 +0400[diff] [blame]51 default-ssl-certificate: "{{ .Global.Id }}-ingress-private/cert-wildcard.p.{{ .Global.Domain }}"
52 extraContainers:
53 - name: tailscale
54 image: tailscale/tailscale:v1.42.0
55 imagePullPolicy: IfNotPresent
56 securityContext:
57 privileged: true
58 capabilities:
59 add:
60 - NET_ADMIN
61 env:
62 - name: TS_EXTRA_ARGS
63 value: --hostname={{ .Global.PCloudEnvName }}-ingress --login-server=headscale.{{ .Global.Domain }} # TODO(gio): take headscale subdomain from configuration