forked from catalin/fukuops
feat: add traefik servertransport that allows ingressing self-signed https backends
This commit is contained in:
parent
5fa78a2cb0
commit
dcedec2117
2 changed files with 11 additions and 1 deletions
|
|
@ -16,7 +16,6 @@ spec:
|
||||||
valuesObject:
|
valuesObject:
|
||||||
authentik:
|
authentik:
|
||||||
secret_key: file:///authentik-creds/secret_key
|
secret_key: file:///authentik-creds/secret_key
|
||||||
reporting_enabled: false
|
|
||||||
email:
|
email:
|
||||||
host: mail.fukurokuju.dev
|
host: mail.fukurokuju.dev
|
||||||
port: 465
|
port: 465
|
||||||
|
|
@ -62,6 +61,9 @@ spec:
|
||||||
type: LoadBalancer
|
type: LoadBalancer
|
||||||
servicePortHttp: 9000
|
servicePortHttp: 9000
|
||||||
servicePortHttps: 9443
|
servicePortHttps: 9443
|
||||||
|
annotations:
|
||||||
|
traefik.ingress.kubernetes.io/service.serversscheme: https
|
||||||
|
traefik.ingress.kubernetes.io/service.serverstransport: apps-fuku-skipverify-authentik@kubernetescrd
|
||||||
metrics:
|
metrics:
|
||||||
enabled: true
|
enabled: true
|
||||||
service:
|
service:
|
||||||
|
|
|
||||||
8
k8s/services/authentik/serverstransport.yaml
Normal file
8
k8s/services/authentik/serverstransport.yaml
Normal file
|
|
@ -0,0 +1,8 @@
|
||||||
|
---
|
||||||
|
apiVersion: traefik.containo.us/v1alpha1
|
||||||
|
kind: ServersTransport
|
||||||
|
metadata:
|
||||||
|
name: skipverify-authentik
|
||||||
|
namespace: apps-fuku
|
||||||
|
spec:
|
||||||
|
insecureSkipVerify: true
|
||||||
Loading…
Add table
Add a link
Reference in a new issue