k8s/apps/mtproxy/secret-reader-ingress.yaml

---
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
  name: auth-proxy
spec:
  forwardAuth:
    address: http://auth-proxy.auth-proxy.svc:80/auth
    trustForwardHeader: true
    authResponseHeaders:
      - X-Auth-Request-User
      - X-Auth-Request-Email
      - X-Auth-Request-Groups
---
apiVersion: traefik.io/v1alpha1
kind: IngressRoute
metadata:
  name: secret-reader
  annotations:
    cert-manager.io/cluster-issuer: letsencrypt
spec:
  entryPoints:
    - websecure
  routes:
    - match: Host(`proxy.hexor.cy`)
      kind: Rule
      middlewares:
        - name: auth-proxy
      services:
        - name: secret-reader
          port: 80
  tls:
    secretName: proxy-tls
---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
  name: proxy-tls
spec:
  secretName: proxy-tls
  issuerRef:
    name: letsencrypt
    kind: ClusterIssuer
  dnsNames:
    - proxy.hexor.cy
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`---`
			`apiVersion: traefik.io/v1alpha1`
Added oauth2 proxy 2026-05-04 18:21:44 +01:00			`kind: Middleware`
			`metadata:`
Deployed rsauth2-proxy 2026-05-05 14:56:56 +01:00			`name: auth-proxy`
Added oauth2 proxy 2026-05-04 18:21:44 +01:00			`spec:`
			`forwardAuth:`
Deployed rsauth2-proxy 2026-05-05 14:56:56 +01:00			`address: http://auth-proxy.auth-proxy.svc:80/auth`
Added oauth2 proxy 2026-05-04 18:21:44 +01:00			`trustForwardHeader: true`
			`authResponseHeaders:`
			`- X-Auth-Request-User`
			`- X-Auth-Request-Email`
			`- X-Auth-Request-Groups`
			`---`
			`apiVersion: traefik.io/v1alpha1`
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`kind: IngressRoute`
			`metadata:`
			`name: secret-reader`
			`annotations:`
			`cert-manager.io/cluster-issuer: letsencrypt`
			`spec:`
			`entryPoints:`
			`- websecure`
			`routes:`
Fixed proxy.hexor.cy 2026-06-04 15:24:55 +03:00			- match: Host(`proxy.hexor.cy`)
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`kind: Rule`
			`middlewares:`
Deployed rsauth2-proxy 2026-05-05 14:56:56 +01:00			`- name: auth-proxy`
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`services:`
			`- name: secret-reader`
			`port: 80`
			`tls:`
Fixed proxy.hexor.cy 2026-06-04 15:24:55 +03:00			`secretName: proxy-tls`
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`---`
			`apiVersion: cert-manager.io/v1`
			`kind: Certificate`
			`metadata:`
Fixed proxy.hexor.cy 2026-06-04 15:24:55 +03:00			`name: proxy-tls`
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`spec:`
Fixed proxy.hexor.cy 2026-06-04 15:24:55 +03:00			`secretName: proxy-tls`
Added oauth2 proxy 2026-05-04 18:06:37 +01:00			`issuerRef:`
			`name: letsencrypt`
			`kind: ClusterIssuer`
			`dnsNames:`
Fixed proxy.hexor.cy 2026-06-04 15:24:55 +03:00			`- proxy.hexor.cy`