Mercurial > code > home > repos > pomerium

comparison make_global.py @ 32:1d3d12b7cf6d

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
move pom cert into make_global.py to share some vars
author drewp@bigasterisk.com
date Wed, 21 Jun 2023 22:57:20 -0700
parents 7d0e02a13b43
children b1f75b0584f3
comparison
equal deleted inserted replaced
31:a8c1e2f028f0 32:1d3d12b7cf6d
57 # 'postgres': { 57 # 'postgres': {
58 # 'secret': "pomerium/postgres-connection-key" 58 # 'secret': "pomerium/postgres-connection-key"
59 # } 59 # }
60 # }, 60 # },
61 } 61 }
62 def pomCert():
63 return {
64 "apiVersion": "cert-manager.io/v1",
65 "kind": "Certificate",
66 "metadata": {
67 "name": POM_CERT_NAME,
68 "namespace": "pomerium"
69 },
70 "spec": {
71 "dnsNames": [
72 AUTH_HOST
73 ],
74 "issuerRef": {
75 "kind": "ClusterIssuer",
76 "name": "letsencrypt-dns-prod"
77 },
78 "secretName": "pomerium-proxy-tls"
79 }
62 } 80 }
63 81
64 # Old note: pom won't start up if this cert doesn't exist, so you have to run once 82 # Old note: pom won't start up if this cert doesn't exist, so you have to run once
65 # with it commented out, then after cert success, run again with it enabled. 83 # with it commented out, then after cert success, run again with it enabled.
66 84