diff --git a/clusters/cl01tl/platform/vault/templates/ingress.yaml b/clusters/cl01tl/platform/vault/templates/ingress.yaml deleted file mode 100644 index 3827cd349..000000000 --- a/clusters/cl01tl/platform/vault/templates/ingress.yaml +++ /dev/null @@ -1,28 +0,0 @@ -apiVersion: networking.k8s.io/v1 -kind: Ingress -metadata: - name: tailscale-cl01tl-vault-ui - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: tailscale-cl01tl-vault-ui - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/version: {{ .Chart.AppVersion }} - app.kubernetes.io/component: tailscale - app.kubernetes.io/part-of: {{ .Release.Name }} - annotations: - tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true" -spec: - ingressClassName: tailscale - tls: - - hosts: - - vault-cl01tl - rules: - - http: - paths: - - path: / - pathType: Prefix - backend: - service: - name: vault-ui - port: - name: http diff --git a/clusters/cl01tl/platform/vault/values.yaml b/clusters/cl01tl/platform/vault/values.yaml index af3a29474..1fd4bd8a0 100644 --- a/clusters/cl01tl/platform/vault/values.yaml +++ b/clusters/cl01tl/platform/vault/values.yaml @@ -21,22 +21,20 @@ vault: cpu: 100m memory: 256Mi ingress: - enabled: false + enabled: true annotations: - traefik.ingress.kubernetes.io/router.entrypoints: websecure - traefik.ingress.kubernetes.io/router.tls: "true" - cert-manager.io/cluster-issuer: letsencrypt-issuer - ingressClassName: traefik + tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true" + ingressClassName: tailscale pathType: Prefix activeService: true hosts: - - host: vault.alexlebens.net + - host: vault-cl01tl paths: - / tls: - - secretName: vault-secret-tls + - secretName: vault-cl01tl hosts: - - vault.alexlebens.net + - vault-cl01tl route: enabled: false authDelegator: