From cf91be274731a36c9df5d5b73be06754d5f2a85b Mon Sep 17 00:00:00 2001
From: alexlebens <alexanderlebens@gmail.com>
Date: Wed, 21 Aug 2024 22:59:48 -0500
Subject: [PATCH] deploy gateway into single cilium instance

---
 .../cl01tl/platform/authentik/templates/http-route.yaml    | 6 ++++--
 .../cl01tl/standalone/cilium/templates/certificate.yaml    | 1 -
 .../authentik => standalone/cilium}/templates/gateway.yaml | 7 +++++--
 3 files changed, 9 insertions(+), 5 deletions(-)
 rename clusters/cl01tl/{platform/authentik => standalone/cilium}/templates/gateway.yaml (84%)

diff --git a/clusters/cl01tl/platform/authentik/templates/http-route.yaml b/clusters/cl01tl/platform/authentik/templates/http-route.yaml
index dc27f478f..020a9639c 100644
--- a/clusters/cl01tl/platform/authentik/templates/http-route.yaml
+++ b/clusters/cl01tl/platform/authentik/templates/http-route.yaml
@@ -13,7 +13,8 @@ spec:
   parentRefs:
     - group: gateway.networking.k8s.io
       kind: Gateway
-      name: authentik-tls-gateway
+      name: cilium-tls-gateway
+      namespace: kube-system
       sectionName: https
   hostnames:
     - auth.alexlebens.net
@@ -49,7 +50,8 @@ spec:
   parentRefs:
     - group: gateway.networking.k8s.io
       kind: Gateway
-      name: authentik-tls-gateway
+      name: cilium-tls-gateway
+      namespace: kube-system
       sectionName: http
   hostnames:
     - auth.alexlebens.net
diff --git a/clusters/cl01tl/standalone/cilium/templates/certificate.yaml b/clusters/cl01tl/standalone/cilium/templates/certificate.yaml
index fe73fa5ce..2a7662457 100644
--- a/clusters/cl01tl/standalone/cilium/templates/certificate.yaml
+++ b/clusters/cl01tl/standalone/cilium/templates/certificate.yaml
@@ -19,4 +19,3 @@ spec:
     name: letsencrypt-issuer
     kind: ClusterIssuer
   commonName: "*.alexlebens.net"
-
diff --git a/clusters/cl01tl/platform/authentik/templates/gateway.yaml b/clusters/cl01tl/standalone/cilium/templates/gateway.yaml
similarity index 84%
rename from clusters/cl01tl/platform/authentik/templates/gateway.yaml
rename to clusters/cl01tl/standalone/cilium/templates/gateway.yaml
index 85eac3b31..8b322203e 100644
--- a/clusters/cl01tl/platform/authentik/templates/gateway.yaml
+++ b/clusters/cl01tl/standalone/cilium/templates/gateway.yaml
@@ -1,10 +1,10 @@
 apiVersion: gateway.networking.k8s.io/v1
 kind: Gateway
 metadata:
-  name: authentik-tls-gateway
+  name: cilium-tls-gateway
   namespace: {{ .Release.Namespace }}
   labels:
-    app.kubernetes.io/name: authentik-tls-gateway
+    app.kubernetes.io/name: cilium-tls-gateway
     app.kubernetes.io/instance: {{ .Release.Name }}
     app.kubernetes.io/version: {{ .Chart.AppVersion }}
     app.kubernetes.io/component: network
@@ -21,6 +21,9 @@ spec:
       protocol: HTTPS
       port: 443
       hostname: "*.alexlebens.net"
+      allowedRoutes:
+        namespaces:
+          from: All
       tls:
         mode: Terminate
         certificateRefs: