From ca5770a6d0a6febef3a165635c548b9d4c584c3b Mon Sep 17 00:00:00 2001
From: alexlebens <alexanderlebens@gmail.com>
Date: Thu, 22 Aug 2024 13:22:36 -0500
Subject: [PATCH] move tailscale ingress into chart

---
 .../platform/authentik/templates/ingress.yaml | 28 -------------------
 .../cl01tl/platform/authentik/values.yaml     | 13 ++++++++-
 2 files changed, 12 insertions(+), 29 deletions(-)
 delete mode 100644 clusters/cl01tl/platform/authentik/templates/ingress.yaml

diff --git a/clusters/cl01tl/platform/authentik/templates/ingress.yaml b/clusters/cl01tl/platform/authentik/templates/ingress.yaml
deleted file mode 100644
index dcba4a20f..000000000
--- a/clusters/cl01tl/platform/authentik/templates/ingress.yaml
+++ /dev/null
@@ -1,28 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
-  name: authentik-cl01tl-authentik-server
-  namespace: {{ .Release.Namespace }}
-  labels:
-    app.kubernetes.io/name: authentik-cl01tl-authentik-server
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/version: {{ .Chart.AppVersion }}
-    app.kubernetes.io/component: tailscale
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-  annotations:
-    tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
-spec:
-  ingressClassName: tailscale
-  tls:
-    - hosts:
-        - auth-cl01tl
-  rules:
-    - http:
-        paths:
-          - path: /
-            pathType: Prefix
-            backend:
-              service:
-                name: authentik-server
-                port:
-                  name: http
diff --git a/clusters/cl01tl/platform/authentik/values.yaml b/clusters/cl01tl/platform/authentik/values.yaml
index 4c77b08c9..7520100dc 100644
--- a/clusters/cl01tl/platform/authentik/values.yaml
+++ b/clusters/cl01tl/platform/authentik/values.yaml
@@ -42,7 +42,18 @@ authentik:
       serviceMonitor:
         enabled: true
     ingress:
-      enabled: false
+      enabled: true
+      ingressClassName: tailscale
+      annotations:
+        tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
+      hosts:
+        - auth-cl01tl
+      paths:
+        - /
+      tls:
+        - secretName: auth-cl01tl
+          hosts:
+            - auth-cl01tl
   worker:
     name: worker
     replicas: 1