switch to tailscale ingress

2024-08-17 11:45:55 -05:00
parent 5fcde3926b
commit 9e57d55a94
2 changed files with 14 additions and 62 deletions
--- a/clusters/cl01tl/applications/homepage/values.yaml
+++ b/clusters/cl01tl/applications/homepage/values.yaml
@@ -230,7 +230,7 @@ homepage:
              - Project Planning:
                  icon: taiga.png
                  description: Taiga
-                  href: https://taiga.alexlebens.net
+                  href: https://taiga-cl01tl.boreal-beaufort.ts.net/discover
                  siteMonitor: http://taiga-front.taiga:80
                  statusStyle: dot
              - Web Design:
--- a/clusters/cl01tl/applications/taiga/values.yaml
+++ b/clusters/cl01tl/applications/taiga/values.yaml
@@ -13,7 +13,7 @@ taiga:
            pullPolicy: IfNotPresent
          env:
            - name: TAIGA_URL
-              value: https://taiga.alexlebens.net
+              value: https://taiga-cl01tl.boreal-beaufort.ts.net
            - name: PUBLIC_REGISTER_ENABLED
              value: false
            - name: ENABLE_GITHUB_AUTH
@@ -92,15 +92,15 @@ taiga:
            - name: OIDC_SIGN_ALGO
              value: RS256
            - name: OIDC_BASE_URL
-              value: https://authentik.alexlebens.net/application/o/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/
            - name: OIDC_JWKS_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/taiga/jwks/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/
            - name: OIDC_AUTHORIZATION_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/authorize/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/
            - name: OIDC_TOKEN_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/token/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/
            - name: OIDC_USER_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/userinfo/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/
            - name: ENABLE_GITHUB_AUTH
              value: "false"
            - name: ENABLE_GITLAB_AUTH
@@ -119,7 +119,7 @@ taiga:
                  name: taiga-async-rabbitmq-secret
                  key: password
            - name: TAIGA_SITES_DOMAIN
-              value: taiga.alexlebens.net
+              value: taiga-cl01tl.boreal-beaufort.ts.net
            - name: TAIGA_SITES_SCHEME
              value: https
            - name: SESSION_COOKIE_SECURE
@@ -184,15 +184,15 @@ taiga:
            - name: OIDC_SIGN_ALGO
              value: RS256
            - name: OIDC_BASE_URL
-              value: https://authentik.alexlebens.net/application/o/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/
            - name: OIDC_JWKS_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/taiga/jwks/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/
            - name: OIDC_AUTHORIZATION_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/authorize/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/
            - name: OIDC_TOKEN_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/token/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/
            - name: OIDC_USER_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/userinfo/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/
            - name: ENABLE_GITHUB_AUTH
              value: "false"
            - name: ENABLE_GITLAB_AUTH
@@ -211,7 +211,7 @@ taiga:
                  name: taiga-async-rabbitmq-secret
                  key: password
            - name: TAIGA_SITES_DOMAIN
-              value: taiga.alexlebens.net
+              value: taiga-cl01tl.boreal-beaufort.ts.net
            - name: TAIGA_SITES_SCHEME
              value: https
            - name: SESSION_COOKIE_SECURE
@@ -311,54 +311,6 @@ taiga:
          targetPort: 8003
          protocol: HTTP
  ingress:
-    main:
-      className: traefik
-      annotations:
-        traefik.ingress.kubernetes.io/router.entrypoints: websecure
-        traefik.ingress.kubernetes.io/router.tls: "true"
-        cert-manager.io/cluster-issuer: letsencrypt-issuer
-      hosts:
-        - host: taiga.alexlebens.net
-          paths:
-            - path: /
-              pathType: Prefix
-              service:
-                name: taiga-front
-                port: 80
-            - path: /api
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /admin
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /oidc
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /events
-              pathType: Prefix
-              service:
-                  name: taiga-events
-                  port: 8888
-              pathType: ImplementationSpecific
-            - path: /media
-              pathType: Prefix
-              service:
-                  name: taiga-protected
-                  port: 8003
-              pathType: ImplementationSpecific
-      tls:
-        - secretName: taiga-secret-tls
-          hosts:
-            - taiga.alexlebens.net
    tailscale:
      enabled: true
      className: tailscale