switch to tailscale ingress

clusters/cl01tl/applications/homepage/values.yaml

@@ -230,7 +230,7 @@ homepage:
               - Project Planning:
                   icon: taiga.png
                   description: Taiga
-                  href: https://taiga.alexlebens.net
+                  href: https://taiga-cl01tl.boreal-beaufort.ts.net/discover
                   siteMonitor: http://taiga-front.taiga:80
                   statusStyle: dot
               - Web Design:

clusters/cl01tl/applications/taiga/values.yaml

@@ -13,7 +13,7 @@ taiga:
             pullPolicy: IfNotPresent
           env:
             - name: TAIGA_URL
-              value: https://taiga.alexlebens.net
+              value: https://taiga-cl01tl.boreal-beaufort.ts.net
             - name: PUBLIC_REGISTER_ENABLED
               value: false
             - name: ENABLE_GITHUB_AUTH
@@ -92,15 +92,15 @@ taiga:
             - name: OIDC_SIGN_ALGO
               value: RS256
             - name: OIDC_BASE_URL
-              value: https://authentik.alexlebens.net/application/o/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/
             - name: OIDC_JWKS_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/taiga/jwks/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/
             - name: OIDC_AUTHORIZATION_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/authorize/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/
             - name: OIDC_TOKEN_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/token/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/
             - name: OIDC_USER_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/userinfo/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/
             - name: ENABLE_GITHUB_AUTH
               value: "false"
             - name: ENABLE_GITLAB_AUTH
@@ -119,7 +119,7 @@ taiga:
                   name: taiga-async-rabbitmq-secret
                   key: password
             - name: TAIGA_SITES_DOMAIN
-              value: taiga.alexlebens.net
+              value: taiga-cl01tl.boreal-beaufort.ts.net
             - name: TAIGA_SITES_SCHEME
               value: https
             - name: SESSION_COOKIE_SECURE
@@ -184,15 +184,15 @@ taiga:
             - name: OIDC_SIGN_ALGO
               value: RS256
             - name: OIDC_BASE_URL
-              value: https://authentik.alexlebens.net/application/o/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/
             - name: OIDC_JWKS_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/taiga/jwks/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/taiga/jwks/
             - name: OIDC_AUTHORIZATION_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/authorize/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/authorize/
             - name: OIDC_TOKEN_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/token/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/token/
             - name: OIDC_USER_ENDPOINT
-              value: https://authentik.alexlebens.net/application/o/userinfo/
+              value: https://auth-cl01tl.boreal-beaufort.ts.net/application/o/userinfo/
             - name: ENABLE_GITHUB_AUTH
               value: "false"
             - name: ENABLE_GITLAB_AUTH
@@ -211,7 +211,7 @@ taiga:
                   name: taiga-async-rabbitmq-secret
                   key: password
             - name: TAIGA_SITES_DOMAIN
-              value: taiga.alexlebens.net
+              value: taiga-cl01tl.boreal-beaufort.ts.net
             - name: TAIGA_SITES_SCHEME
               value: https
             - name: SESSION_COOKIE_SECURE
@@ -311,54 +311,6 @@ taiga:
           targetPort: 8003
           protocol: HTTP
   ingress:
-    main:
-      className: traefik
-      annotations:
-        traefik.ingress.kubernetes.io/router.entrypoints: websecure
-        traefik.ingress.kubernetes.io/router.tls: "true"
-        cert-manager.io/cluster-issuer: letsencrypt-issuer
-      hosts:
-        - host: taiga.alexlebens.net
-          paths:
-            - path: /
-              pathType: Prefix
-              service:
-                name: taiga-front
-                port: 80
-            - path: /api
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /admin
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /oidc
-              pathType: Prefix
-              service:
-                  name: taiga-back
-                  port: 8000
-              pathType: ImplementationSpecific
-            - path: /events
-              pathType: Prefix
-              service:
-                  name: taiga-events
-                  port: 8888
-              pathType: ImplementationSpecific
-            - path: /media
-              pathType: Prefix
-              service:
-                  name: taiga-protected
-                  port: 8003
-              pathType: ImplementationSpecific
-      tls:
-        - secretName: taiga-secret-tls
-          hosts:
-            - taiga.alexlebens.net
     tailscale:
       enabled: true
       className: tailscale