Mercurial > code > home > repos > sensor-bridge
diff ingress.yaml @ 0:62cca1da7955
start
| author | drewp@bigasterisk.com |
|---|---|
| date | Sat, 14 Dec 2024 17:46:42 -0800 |
| parents | |
| children |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/ingress.yaml Sat Dec 14 17:46:42 2024 -0800 @@ -0,0 +1,27 @@ +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: sensor-bridge + annotations: + cert-manager.io/cluster-issuer: letsencrypt-prod + ingress.pomerium.io/pass_identity_headers: "true" + ingress.pomerium.io/preserve_host_header: "true" + ingress.pomerium.io/allow_websockets: "true" + ingress.pomerium.io/allow_public_unauthenticated_access: "false" + ingress.pomerium.io/policy: | + allow: + or: + - { email: { is: "drewpca@gmail.com" }} + - { email: { is: "kelsimp@gmail.com" }} +spec: + ingressClassName: pomerium + rules: + - host: "bigasterisk.com" + http: + paths: + - pathType: Prefix + path: /sensor-bridge/ + backend: { service: { name: sensor-bridge, port: { number: 80 } } } + tls: + - hosts: [bigasterisk.com] + secretName: bigasterisk.com-tls