Mercurial > code > home > repos > pi_mqtt

annotate ingress.yaml @ 7:f0d549ec5e59 default tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
deployment and hostname
author drewp@bigasterisk.com
date Mon, 23 Sep 2024 01:24:48 -0700
parents 3989f073ed9e
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
0
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
1 apiVersion: networking.k8s.io/v1
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
2 kind: Ingress
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
3 metadata:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
4 name: pi-mqtt
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
5 annotations:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
6 cert-manager.io/cluster-issuer: letsencrypt-prod
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
7 ingress.pomerium.io/pass_identity_headers: "true"
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
8 ingress.pomerium.io/preserve_host_header: "true"
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
9 ingress.pomerium.io/allow_websockets: "true"
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
10 ingress.pomerium.io/allow_public_unauthenticated_access: "false"
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
11 ingress.pomerium.io/policy: |
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
12 allow:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
13 or:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
14 - { email: { is: "drewpca@gmail.com" }}
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
15 - { email: { is: "kelsimp@gmail.com" }}
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
16 spec:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
17 ingressClassName: pomerium
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
18 rules:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
19 - host: "bigasterisk.com"
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
20 http:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
21 paths:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
22 - pathType: Prefix
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
23 path: /pi-mqtt/
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
24 backend: { service: { name: pi-mqtt, port: { number: 80 } } }
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
25 tls:
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
26 - hosts: [bigasterisk.com]
3989f073ed9e start. hardcoded motion light in garage
drewp@bigasterisk.com
parents:
diff changeset
27 secretName: bigasterisk.com-tls