Changeset - aca4a29d06fc
Parent rev.
Child rev.
[Not reviewed]
default
0 0 1
drewp@bigasterisk.com - 8 months ago 2024-05-20 08:26:44
drewp@bigasterisk.com
ingress
1 file changed with 38 insertions and 0 deletions:
ingress.yaml
38
0 comments (0 inline, 0 general)
ingress.yaml
Show inline comments
 
new file 100644
 
apiVersion: v1
 
kind: Service
 
metadata:
 
  name: light9
 
spec:
 
  ports:
 
    - protocol: TCP
 
      port: 8200
 
      targetPort: 8200
 
  type: ExternalName
 
  externalName: dash5
 
---
 
apiVersion: networking.k8s.io/v1
 
kind: Ingress
 
metadata:
 
  name: light9
 
  annotations:
 
    cert-manager.io/cluster-issuer: letsencrypt-prod
 
    ingress.pomerium.io/pass_identity_headers: "true"
 
    ingress.pomerium.io/preserve_host_header: "true"
 
    ingress.pomerium.io/allow_websockets: "true"
 
    ingress.pomerium.io/allow_public_unauthenticated_access: "false"
 
    ingress.pomerium.io/policy: |
 
      allow:
 
        or:
 
          - { email: { is: "drewpca@gmail.com" }}
 
          - { email: { is: "kelsimp@gmail.com" }}
 
          - { email: { is: "david.mcclosky@gmail.com" }}
 
spec:
 
  ingressClassName: pomerium
 
  rules:
 
    - host: "light9.bigasterisk.com"
 
      http:
 
        paths:
 
          - { pathType: Prefix, path: "/", backend: { service: { name: light9, port: { number: 8200 } } } }
 
  tls:
 
    - hosts: [light9.bigasterisk.com]
 
      secretName: light9.bigasterisk.com-tls
0 comments (0 inline, 0 general)
Server instance: kallithea-749ff669b6-v9g5f-75 This site is powered by Kallithea 0.7.0, which is © 2010–2021 by various authors & licensed under GPLv3. – Support