From 9e57d55a94e5d1dcbff23c0855e443cd1440e52d Mon Sep 17 00:00:00 2001 From: alexlebens Date: Sat, 17 Aug 2024 11:45:55 -0500 Subject: [PATCH] switch to tailscale ingress --- .../cl01tl/applications/homepage/values.yaml | 2 +- .../cl01tl/applications/taiga/values.yaml | 74 ++++--------------- 2 files changed, 14 insertions(+), 62 deletions(-) diff --git a/clusters/cl01tl/applications/homepage/values.yaml b/clusters/cl01tl/applications/homepage/values.yaml index 87415415b..089cff4d7 100644 --- a/clusters/cl01tl/applications/homepage/values.yaml +++ b/clusters/cl01tl/applications/homepage/values.yaml @@ -230,7 +230,7 @@ homepage: - Project Planning: icon: taiga.png description: Taiga - href: https://taiga.alexlebens.net + href: https://taiga-cl01tl.boreal-beaufort.ts.net/discover siteMonitor: http://taiga-front.taiga:80 statusStyle: dot - Web Design: diff --git a/clusters/cl01tl/applications/taiga/values.yaml b/clusters/cl01tl/applications/taiga/values.yaml index 2e987e268..49a965bf0 100644 --- a/clusters/cl01tl/applications/taiga/values.yaml +++ b/clusters/cl01tl/applications/taiga/values.yaml @@ -13,7 +13,7 @@ taiga: pullPolicy: IfNotPresent env: - name: TAIGA_URL - value: https://taiga.alexlebens.net + value: https://taiga-cl01tl.boreal-beaufort.ts.net - name: PUBLIC_REGISTER_ENABLED value: false - name: ENABLE_GITHUB_AUTH @@ -92,15 +92,15 @@ taiga: - name: OIDC_SIGN_ALGO value: RS256 - name: OIDC_BASE_URL - value: https://authentik.alexlebens.net/application/o/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/ - name: OIDC_JWKS_ENDPOINT - value: https://authentik.alexlebens.net/application/o/taiga/jwks/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/ - name: OIDC_AUTHORIZATION_ENDPOINT - value: https://authentik.alexlebens.net/application/o/authorize/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/ - name: OIDC_TOKEN_ENDPOINT - value: https://authentik.alexlebens.net/application/o/token/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/ - name: OIDC_USER_ENDPOINT - value: https://authentik.alexlebens.net/application/o/userinfo/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/ - name: ENABLE_GITHUB_AUTH value: "false" - name: ENABLE_GITLAB_AUTH @@ -119,7 +119,7 @@ taiga: name: taiga-async-rabbitmq-secret key: password - name: TAIGA_SITES_DOMAIN - value: taiga.alexlebens.net + value: taiga-cl01tl.boreal-beaufort.ts.net - name: TAIGA_SITES_SCHEME value: https - name: SESSION_COOKIE_SECURE @@ -184,15 +184,15 @@ taiga: - name: OIDC_SIGN_ALGO value: RS256 - name: OIDC_BASE_URL - value: https://authentik.alexlebens.net/application/o/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/ - name: OIDC_JWKS_ENDPOINT - value: https://authentik.alexlebens.net/application/o/taiga/jwks/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/ - name: OIDC_AUTHORIZATION_ENDPOINT - value: https://authentik.alexlebens.net/application/o/authorize/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/ - name: OIDC_TOKEN_ENDPOINT - value: https://authentik.alexlebens.net/application/o/token/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/ - name: OIDC_USER_ENDPOINT - value: https://authentik.alexlebens.net/application/o/userinfo/ + value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/ - name: ENABLE_GITHUB_AUTH value: "false" - name: ENABLE_GITLAB_AUTH @@ -211,7 +211,7 @@ taiga: name: taiga-async-rabbitmq-secret key: password - name: TAIGA_SITES_DOMAIN - value: taiga.alexlebens.net + value: taiga-cl01tl.boreal-beaufort.ts.net - name: TAIGA_SITES_SCHEME value: https - name: SESSION_COOKIE_SECURE @@ -311,54 +311,6 @@ taiga: targetPort: 8003 protocol: HTTP ingress: - main: - className: traefik - annotations: - traefik.ingress.kubernetes.io/router.entrypoints: websecure - traefik.ingress.kubernetes.io/router.tls: "true" - cert-manager.io/cluster-issuer: letsencrypt-issuer - hosts: - - host: taiga.alexlebens.net - paths: - - path: / - pathType: Prefix - service: - name: taiga-front - port: 80 - - path: /api - pathType: Prefix - service: - name: taiga-back - port: 8000 - pathType: ImplementationSpecific - - path: /admin - pathType: Prefix - service: - name: taiga-back - port: 8000 - pathType: ImplementationSpecific - - path: /oidc - pathType: Prefix - service: - name: taiga-back - port: 8000 - pathType: ImplementationSpecific - - path: /events - pathType: Prefix - service: - name: taiga-events - port: 8888 - pathType: ImplementationSpecific - - path: /media - pathType: Prefix - service: - name: taiga-protected - port: 8003 - pathType: ImplementationSpecific - tls: - - secretName: taiga-secret-tls - hosts: - - taiga.alexlebens.net tailscale: enabled: true className: tailscale