ab/homelab
1
1
Fork 1
Code Issues Pull Requests 70 Actions Packages Wiki Activity

Moved pass to keycloak
Check with kubeconform / lint (push) Successful in 8s
Details
Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 9s
Details
Auto-update README / Generate README and Create MR (push) Successful in 15s
Details

Browse Source
This commit is contained in:
Ultradesu
2026-05-05 15:48:47 +01:00
parent 93856cc30e
commit 1fb779255f
2 changed files with 58 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
k8s/apps/k8s-secrets/ingress.yaml
+46
View File
@@ -0,0 +1,46 @@
---
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
name: auth-proxy
spec:
forwardAuth:
address: http://auth-proxy.auth-proxy.svc:80/auth
trustForwardHeader: true
authResponseHeaders:
- X-Auth-Request-User
- X-Auth-Request-Email
- X-Auth-Request-Groups
---
apiVersion: traefik.io/v1alpha1
kind: IngressRoute
metadata:
name: secret-reader
annotations:
cert-manager.io/cluster-issuer: letsencrypt
spec:
entryPoints:
- websecure
routes:
- match: Host(`pass.hexor.cy`)
kind: Rule
middlewares:
- name: auth-proxy
services:
- name: secret-reader
port: 80
tls:
secretName: secret-reader-tls
---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: secret-reader-tls
spec:
secretName: secret-reader-tls
issuerRef:
name: letsencrypt
kind: ClusterIssuer
dnsNames:
- pass.hexor.cy
k8s/apps/k8s-secrets/kustomization.yaml
+12
View File
@@ -0,0 +1,12 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./app.yaml
- ./deployment.yaml
- ./external-secret.yaml
- ./ingress.yaml
- ./kustomization.yaml
- ./rbac.yaml
- ./service-account.yaml
- ./service.yaml