Mercurial > code > home > repos > pomerium

changeset 3:f7dea43be3a5

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
add projects.bigasterisk.com (but still fwd it to nginx)
author drewp@bigasterisk.com
date Wed, 14 Sep 2022 23:16:14 -0700
parents b605b92e89b8
children 0aabbb905eae
files ingress-default.yaml
diffstat 1 files changed, 20 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/ingress-default.yaml	Wed Sep 14 22:04:29 2022 -0700
+++ b/ingress-default.yaml	Wed Sep 14 23:16:14 2022 -0700
@@ -17,3 +17,23 @@
   tls:
     - hosts: [bigasterisk.com]
       secretName: bigasterisk.com-tls
+---
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: default-projects
+  annotations:
+    cert-manager.io/issuer: letsencrypt-prod
+    ingress.pomerium.io/allow_public_unauthenticated_access: "true"
+    ingress.pomerium.io/pass_identity_headers: "true"
+    ingress.pomerium.io/preserve_host_header: "true"
+spec:
+  ingressClassName: pomerium
+  rules:
+    - host: "projects.bigasterisk.com"
+      http:
+        paths:
+          - { pathType: Prefix, path: /, backend: { service: { name: nginx, port: { number: 11444 } } } }
+  tls:
+    - hosts: [projects.bigasterisk.com]
+      secretName: projects.bigasterisk.com-tls