front-door-lock: ingress.yaml annotate

annotate ingress.yaml @ 11:020b84ff0c7f

board

author	drewp@bigasterisk.com
date	Wed, 26 Jun 2024 22:23:34 -0700
parents	4365c72c59f6
children

rev	line source
0 4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	1 apiVersion: networking.k8s.io/v1
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	2 kind: Ingress
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	3 metadata:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	4 name: front-door-lock
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	5 annotations:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	6 cert-manager.io/cluster-issuer: letsencrypt-prod
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	7 ingress.pomerium.io/pass_identity_headers: "true"
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	8 ingress.pomerium.io/preserve_host_header: "true"
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	9 ingress.pomerium.io/allow_websockets: "true"
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	10 ingress.pomerium.io/allow_public_unauthenticated_access: "false"
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	11 ingress.pomerium.io/policy: \|
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	12 allow:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	13 or:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	14 - { email: { is: "drewpca@gmail.com" }}
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	15 - { email: { is: "kelsimp@gmail.com" }}
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	16 spec:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	17 ingressClassName: pomerium
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	18 rules:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	19 - host: "bigasterisk.com"
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	20 http:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	21 paths:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	22 - pathType: Prefix
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	23 path: /front-door-lock/
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	24 backend: { service: { name: front-door-lock, port: { number: 80 } } }
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	25 tls:
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	26 - hosts: [bigasterisk.com]
4365c72c59f6 start drewp@bigasterisk.com parents: diff changeset	27 secretName: bigasterisk.com-tls

Mercurial > code > home > repos > front-door-lock

annotate ingress.yaml @ 11:020b84ff0c7f