From 958eb9b0e334c8fe0c10396705e94320aec1559d Mon Sep 17 00:00:00 2001 From: Alvin Wang Date: Mon, 20 Apr 2026 11:26:33 -0400 Subject: [PATCH] added https to traefik-internal --- .../templates/glance-ingressroute.yaml | 17 +++++++++++++++++ .../templates/homepage-ingressroute.yaml | 17 +++++++++++++++++ .../traefik-internal/templates/tls-store.yaml | 7 +++++++ .../templates/traefik-internal.yaml | 6 ++++++ charts/traefik-internal/values.yaml | 2 ++ 5 files changed, 49 insertions(+) create mode 100644 charts/traefik-internal/templates/tls-store.yaml diff --git a/charts/dashboards/templates/glance-ingressroute.yaml b/charts/dashboards/templates/glance-ingressroute.yaml index 596579f..52352ac 100644 --- a/charts/dashboards/templates/glance-ingressroute.yaml +++ b/charts/dashboards/templates/glance-ingressroute.yaml @@ -13,3 +13,20 @@ spec: services: - name: glance port: 8082 +--- +apiVersion: traefik.io/v1alpha1 +kind: IngressRoute +metadata: + name: glance-tls + annotations: + kubernetes.io/ingress.class: traefik-internal +spec: + entryPoints: + - websecure + routes: + - match: Host(`glance.{{ .Values.internalDomain }}`) + kind: Rule + services: + - name: glance + port: 8082 + tls: {} diff --git a/charts/dashboards/templates/homepage-ingressroute.yaml b/charts/dashboards/templates/homepage-ingressroute.yaml index 8307b94..d51dcfd 100644 --- a/charts/dashboards/templates/homepage-ingressroute.yaml +++ b/charts/dashboards/templates/homepage-ingressroute.yaml @@ -13,3 +13,20 @@ spec: services: - name: homepage port: 3000 +--- +apiVersion: traefik.io/v1alpha1 +kind: IngressRoute +metadata: + name: homepage-tls + annotations: + kubernetes.io/ingress.class: traefik-internal +spec: + entryPoints: + - websecure + routes: + - match: Host(`homepage.{{ .Values.internalDomain }}`) + kind: Rule + services: + - name: homepage + port: 3000 + tls: {} diff --git a/charts/traefik-internal/templates/tls-store.yaml b/charts/traefik-internal/templates/tls-store.yaml new file mode 100644 index 0000000..1cc2116 --- /dev/null +++ b/charts/traefik-internal/templates/tls-store.yaml @@ -0,0 +1,7 @@ +apiVersion: traefik.io/v1alpha1 +kind: TLSStore +metadata: + name: default +spec: + defaultCertificate: + secretName: {{ .Values.tlsSecretName }} diff --git a/charts/traefik-internal/templates/traefik-internal.yaml b/charts/traefik-internal/templates/traefik-internal.yaml index 922ec4c..0cc5f3c 100644 --- a/charts/traefik-internal/templates/traefik-internal.yaml +++ b/charts/traefik-internal/templates/traefik-internal.yaml @@ -61,6 +61,7 @@ spec: image: {{ .Values.image }} args: - --entrypoints.web.address=:{{ .Values.port }} + - --entrypoints.websecure.address=:{{ .Values.httpsPort }} - --providers.kubernetescrd - --providers.kubernetescrd.ingressClass={{ .Values.ingressClass }} - --api.insecure=true @@ -68,6 +69,8 @@ spec: ports: - name: web containerPort: {{ .Values.port }} + - name: websecure + containerPort: {{ .Values.httpsPort }} - name: dashboard containerPort: 8080 --- @@ -86,6 +89,9 @@ spec: - name: web port: {{ .Values.port }} targetPort: {{ .Values.port }} + - name: websecure + port: {{ .Values.httpsPort }} + targetPort: {{ .Values.httpsPort }} - name: dashboard port: 9095 targetPort: 8080 diff --git a/charts/traefik-internal/values.yaml b/charts/traefik-internal/values.yaml index f170709..ef3c4f5 100644 --- a/charts/traefik-internal/values.yaml +++ b/charts/traefik-internal/values.yaml @@ -1,4 +1,6 @@ image: traefik:v3.3 port: 80 +httpsPort: 443 ingressClass: traefik-internal loadBalancerIP: "10.0.1.250" +tlsSecretName: traefik-internal-tls