From 0f504699eb705a180dfc57868fa8575879a67451 Mon Sep 17 00:00:00 2001
From: Taqi Tahmid <mdtaqitahmid@gmail.com>
Date: Fri, 18 Jul 2025 19:54:30 +0300
Subject: [PATCH] kubernetes: move LDAP server to local ingress

---
 kubernetes/README.md                    |  6 +++---
 kubernetes/lldap-helm-chart/values.yaml | 23 ++++++++++-------------
 2 files changed, 13 insertions(+), 16 deletions(-)

diff --git a/kubernetes/README.md b/kubernetes/README.md
index 3a2148e..2c32ff4 100644
--- a/kubernetes/README.md
+++ b/kubernetes/README.md
@@ -710,10 +710,10 @@ kubectl create namespace ldap
 kubectl get secret wildcard-cert-secret --namespace=cert-manager -o yaml \
   | sed 's/namespace: cert-manager/namespace: ldap/' | kubectl apply -f -
 
-helm install ldap \
-  lldap-helm-chart/ \
+helm upgrade --install ldap \
+  lldap-helm-chart/ -f lldap-helm-chart/values.yaml \
   --set ingress.hosts.host=$LDAP_HOST \
-  --set ingress.tls[0].hosts[0]=$DNSNAME \
+  --set ingress.tls[0].hosts[0]=$LDAP_HOST \
   --set secret.lldapUserName=$LLDAP_ADMIN_USER \
   --set secret.lldapJwtSecret=$LLDAP_JWT_SECRET \
   --set secret.lldapUserPass=$LLDAP_ADMIN_PASSWORD \
diff --git a/kubernetes/lldap-helm-chart/values.yaml b/kubernetes/lldap-helm-chart/values.yaml
index 487210e..3ec69ab 100644
--- a/kubernetes/lldap-helm-chart/values.yaml
+++ b/kubernetes/lldap-helm-chart/values.yaml
@@ -7,7 +7,6 @@ secret:
   lldapUserPass: "placeholder"
   lldapBaseDn: "dc=homelab,dc=local"
 
-
 ##### pvc
 persistence:
   enabled: true
@@ -39,12 +38,12 @@ env:
 extraEnv: []
 
 resources:
- limits:
-   cpu: 100m
-   memory: 100Mi
- requests:
-   cpu: 50m
-   memory: 50M
+  limits:
+    cpu: 100m
+    memory: 100Mi
+  requests:
+    cpu: 50m
+    memory: 50M
 
 nodeSelector: {}
 
@@ -59,7 +58,6 @@ image:
   tag: "v0.6.1"
   pullPolicy: "IfNotPresent"
 
-
 #### service this is unique service, so no enabled is added as if not it wont work
 service:
   webui:
@@ -79,10 +77,11 @@ service:
 
 #####ingress
 ingress:
-  ingressClassName: "traefik"
+  ingressClassName: "nginx"
   enabled: true
   name: lldap-web-ingress
-  annotations: {}
+  annotations:
+    cert-manager.io/cluster-issuer: "acme-issuer"
   labels: {}
   hosts:
     host: "placeholder.test.com"
@@ -90,8 +89,6 @@ ingress:
       path: "/"
       pathType: "Prefix"
   tls:
-    - secretName: "lldap-secret-tls"
+    - secretName: lldap-tls-cert
       hosts:
         - "placeholder.test.com"
-
-