taqi/homeserver
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

use auto generate cert-manager tls for external-services

Browse Source
This commit is contained in:
Taqi Tahmid
2025-05-14 19:17:30 +03:00
parent 9731f466f0
commit fae40d0332
2 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
kubernetes/README.md
View File

@ -146,8 +146,6 @@ services running locally or remotely.
```bash ```bash
source .env source .env
kubectl create namespace external-services kubectl create namespace external-services
kubectl get secret wildcard-cert-secret --namespace=cert-manager -o yaml \
| sed 's/namespace: cert-manager/namespace: external-services/' | kubectl apply -f -
envsubst '${PROXMOX_IP} ${PROXMOX_HOST}' < external-service/proxmox.yaml | \ envsubst '${PROXMOX_IP} ${PROXMOX_HOST}' < external-service/proxmox.yaml | \
kubectl apply -n external-services -f - kubectl apply -n external-services -f -
``` ```

7
kubernetes/external-service/proxmox.yaml
View File

@ -64,6 +64,8 @@ data:
apiVersion: traefik.io/v1alpha1 apiVersion: traefik.io/v1alpha1
kind: IngressRoute kind: IngressRoute
metadata: metadata:
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
name: proxmox-route name: proxmox-route
namespace: external-services namespace: external-services
spec: spec:
@ -76,4 +78,7 @@ spec:
- name: proxmox-proxy - name: proxmox-proxy
port: 80 port: 80
tls: tls:
secretName: wildcard-cert-secret certResolver: cert-manager
secretName: proxmox-tls
domains:
- main: "${PROXMOX_HOST}"