k8s/helm/forgejo/istio-ingress.yaml

65 lines
1.1 KiB
YAML

---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: gitea-cert
namespace: istio-system
spec:
secretName: gitea-cert
commonName: git.devvul.com
dnsNames:
- git.devvul.com
issuerRef:
name: letsencrypt-prod
kind: ClusterIssuer
group: cert-manager.io
...
---
apiVersion: networking.istio.io/v1beta1
kind: Gateway
metadata:
name: gitea-gateway
namespace: gitea
spec:
selector:
istio: ingressgateway
servers:
- port:
number: 443
name: https
protocol: HTTPS
tls:
mode: SIMPLE
credentialName: gitea-cert
hosts:
- git.devvul.com
- port:
number: 80
name: http
protocol: HTTP
tls:
httpsRedirect: true
hosts:
- git.devvul.com
...
---
apiVersion: networking.istio.io/v1beta1
kind: VirtualService
metadata:
name: gitea-gateway
namespace: gitea
spec:
hosts:
- git.devvul.com
gateways:
- gitea-gateway
http:
- match:
- uri:
prefix: /
route:
- destination:
port:
number: 80
host: forgejo-http
...