amkartashov/gf-k8s
1
0
Fork 0
mirror of https://github.com/amkartashov/gf-k8s.git synced 2026-01-11 01:49:44 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

use separate certificate for oauth2-proxy

Browse source 
because it's not in default namespace
This commit is contained in:
Andrey Kartashov 2019-11-02 21:06:47 +07:00
parent 34b6d4d06c
commit 95e7312153
2 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
apps/services/certificate.yaml
View file

@ -18,7 +18,6 @@ spec:
- router.gorilych.ru - router.gorilych.ru
- seafile.gorilych.ru - seafile.gorilych.ru
- grafana.gorilych.ru - grafana.gorilych.ru
- oauth2.gorilych.ru
acme: acme:
config: config:
- http01: { ingressClass: nginx } - http01: { ingressClass: nginx }
@ -31,6 +30,5 @@ spec:
- router.gorilych.ru - router.gorilych.ru
- seafile.gorilych.ru - seafile.gorilych.ru
- grafana.gorilych.ru - grafana.gorilych.ru
- oauth2.gorilych.ru

3
apps/system/oauth2-proxy/values.yaml
View file

@ -13,10 +13,11 @@ oauth2-proxy:
enabled: true enabled: true
annotations: annotations:
kubernetes.io/ingress.class: nginx kubernetes.io/ingress.class: nginx
cert-manager.io/cluster-issuer: letsencrypt
hosts: hosts:
- oauth2.gorilych.ru - oauth2.gorilych.ru
tls: tls:
- hosts: - hosts:
- oauth2.gorilych.ru - oauth2.gorilych.ru
secretName: san-gorilych-ru-tls secretName: oauth2-gorilych-ru-tls