steffen/kubedeploy-k3s
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

traefik front overlay

Browse Source
This commit is contained in:
Steffen Illium
2024-03-29 17:17:03 +01:00
parent 588ba95fac
commit bc26377923
11 changed files with 94 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
infrastructure/02-argocd/kustomization.yaml
View File

@ -11,7 +11,6 @@ resources:
- base/argo-cd-k-with-helm.yaml - base/argo-cd-k-with-helm.yaml
- https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml - https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml
- base/argo-cd-namespace.yaml - base/argo-cd-namespace.yaml
- base/ghcr-io-secret-sealed.yaml
patches: patches:
- path: patches/argocd-server-service.yaml - path: patches/argocd-server-service.yaml

16
infrastructure/03-traefik/base/kustomization.yaml Normal file
View File

@ -0,0 +1,16 @@
resources:
- traefik-adguard-service-udp-dns.yaml
- traefik-middleware-default-headers.yaml
helmCharts:
- name: traefik
includeCRDs: true
version: 26.1.0
releaseName: lcl
repo: https://traefik.github.io/charts
valuesFile: base/values.yaml
patches:
- path: ../patches/nodeselector.yaml
target:
kind: (StatefulSet|Deployment|Job)

4
infrastructure/03-traefik/base/values.yaml
View File

@ -1,7 +1,7 @@
logs: logs:
general: general:
# -- Alternative logging levels are DEBUG, PANIC, FATAL, ERROR, WARN, and INFO. # -- Alternative logging levels are DEBUG, PANIC, FATAL, ERROR, WARN, and INFO.
level: INFO level: WARN
access: access:
# -- To enable access logs # -- To enable access logs
enabled: true enabled: true
@ -25,6 +25,8 @@ ingressRoute:
entryPoints: entryPoints:
- "websecure" - "websecure"
- "web" - "web"
labels:
- private
# Add custom middlewares : authentication and redirection # Add custom middlewares : authentication and redirection
# middlewares: # middlewares:
# - name: traefik-dashboard-auth # - name: traefik-dashboard-auth

8
infrastructure/03-traefik/external-overlay/kustomization.yaml
View File

@ -1,8 +0,0 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: traefik-external
resources:
- ../base
namePrefix: dev-

3
infrastructure/03-traefik/foreign/home-assistant/kustomization.yaml Normal file
View File

@ -0,0 +1,3 @@
resources:
- home-assistant-ingress.yaml
- home-assistant-service.yaml

2
infrastructure/03-traefik/foreign/kustomization.yaml Normal file
View File

@ -0,0 +1,2 @@
resources:
- home-assistant

25
infrastructure/03-traefik/kustomization.yaml
View File

@ -1,24 +1,3 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: traefik
resources: resources:
- base/traefik-middleware-default-headers.yaml - overlay-internal
- base/traefik-adguard-service-udp-dns.yaml - overlay-external
### Routes and Services for out of cluster deployments/legacy
- foreign/home-assistant/home-assistant-ingress.yaml
- foreign/home-assistant/home-assistant-service.yaml
helmCharts:
- name: traefik
includeCRDs: true
version: 26.1.0
releaseName: lcl
repo: https://traefik.github.io/charts
valuesFile: base/values.yaml
patches:
- path: patches/nodeselector.yaml
target:
kind: (StatefulSet|Deployment|Job)

18
infrastructure/03-traefik/overlay-external/kustomization.yaml Normal file
View File

@ -0,0 +1,18 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: traefik
namePrefix: front-
resources:
#### OVERLAYS for internal traefik only
### Routes and Services for out of cluster deployments/legacy
- ../foreign
### Traefik base
- ../base
patches:
- path: patches/traefik-labelselector.yaml

33
infrastructure/03-traefik/overlay-external/patches/traefik-labelselector.yaml Normal file
View File

@ -0,0 +1,33 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: lcl-traefik
namespace: traefik
spec:
template:
spec:
containers:
- args:
- '--providers.kubernetescrd.labelSelector=appexpose=true'
- '--global.sendanonymoususage=false'
- '--global.checknewversion=false'
- '--entrypoints.dns.address=:53/udp'
- '--entrypoints.traefik.address=:9000/tcp'
- '--entrypoints.web.address=:8000/tcp'
- '--entrypoints.websecure.address=:8443/tcp'
- '--api.dashboard=true'
- '--ping=true'
- '--providers.kubernetescrd'
- '--providers.kubernetescrd.allowExternalNameServices=true'
- '--providers.kubernetesingress'
- '--providers.kubernetesingress.allowExternalNameServices=true'
- '--entrypoints.websecure.http.middlewares=traefik-default-headers'
- '--entrypoints.websecure.http.tls=true'
- '--entrypoints.websecure.http.tls.certResolver=default'
- '--log.level=INFO'
- '--accesslog=true'
- '--accesslog.fields.defaultmode=keep'
- '--accesslog.fields.headers.defaultmode=drop'
- '--serversTransport.insecureSkipVerify=false'

14
infrastructure/03-traefik/overlay-internal/kustomization.yaml Normal file
View File

@ -0,0 +1,14 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: traefik
namePrefix: local-
resources:
#### OVERLAYS for internal traefik only
### Routes and Services for out of cluster deployments/legacy
- ../foreign
### Traefik base
- ../base

3
infrastructure/04-longhorn/kustomization.yaml
View File

@ -17,4 +17,7 @@ patches:
- path: patches/nodeselector.yaml - path: patches/nodeselector.yaml
target: target:
kind: (StatefulSet|Deployment|Job) kind: (StatefulSet|Deployment|Job)
- path: patches/podselector.yaml
target:
kind: Pod