use ssh

clusters/cl01tl/deployment/stack/values.yaml

@@ -3,8 +3,8 @@ cluster:
 git:
   # repo: git@github.com:alexlebens/infrastructure.git
   # repo: https://github.com/alexlebens/infrastructure.git
-  repo: http://gitea-http.gitea:3000/alexlebens/infrastructure
+  # repo: http://gitea-http.gitea:3000/alexlebens/infrastructure
-  # repo: ssh://git@gitea-ssh.gitea:2222/alexlebens/infrastructure
+  repo: ssh://git@gitea-ssh.gitea:2222/alexlebens/infrastructure
   revision: HEAD
 applicationSet:
   - name: applications

clusters/cl01tl/platform/authentik/templates/ingress.yaml

@@ -1,32 +1,32 @@
-# apiVersion: networking.k8s.io/v1
+apiVersion: networking.k8s.io/v1
-# kind: Ingress
+kind: Ingress
-# metadata:
+metadata:
-#   name: authentik-tailscale
+  name: authentik-tailscale
-#   namespace: {{ .Release.Namespace }}
+  namespace: {{ .Release.Namespace }}
-#   labels:
+  labels:
-#     app.kubernetes.io/name: authentik-tailscale
+    app.kubernetes.io/name: authentik-tailscale
-#     app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/instance: {{ .Release.Name }}
-#     app.kubernetes.io/version: {{ .Chart.AppVersion }}
+    app.kubernetes.io/version: {{ .Chart.AppVersion }}
-#     app.kubernetes.io/component: web
+    app.kubernetes.io/component: web
-#     app.kubernetes.io/part-of: {{ .Release.Name }}
+    app.kubernetes.io/part-of: {{ .Release.Name }}
-#   labels:
+  labels:
-#     tailscale.com/proxy-class: no-metrics
+    tailscale.com/proxy-class: no-metrics
-#   annotations:
+  annotations:
-#     tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
+    tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
-# spec:
+spec:
-#   ingressClassName: tailscale
+  ingressClassName: tailscale
-#   tls:
+  tls:
-#     - hosts:
+    - hosts:
-#         - auth-cl01tl
+        - auth-cl01tl
-#       secretName: auth-cl01tl
+      secretName: auth-cl01tl
-#   rules:
+  rules:
-#     - host: auth-cl01tl
+    - host: auth-cl01tl
-#       http:
+      http:
-#         paths:
+        paths:
-#           - path: /
+          - path: /
-#             pathType: Prefix
+            pathType: Prefix
-#             backend:
+            backend:
-#               service:
+              service:
-#                 name: authentik-server
+                name: authentik-server
-#                 port:
+                port:
-#                   number: 80
+                  number: 80

clusters/cl01tl/platform/gitea/templates/ingress.yaml

@@ -1,32 +1,32 @@
-# apiVersion: networking.k8s.io/v1
+apiVersion: networking.k8s.io/v1
-# kind: Ingress
+kind: Ingress
-# metadata:
+metadata:
-#   name: gitea-tailscale
+  name: gitea-tailscale
-#   namespace: {{ .Release.Namespace }}
+  namespace: {{ .Release.Namespace }}
-#   labels:
+  labels:
-#     app.kubernetes.io/name: gitea-tailscale
+    app.kubernetes.io/name: gitea-tailscale
-#     app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/instance: {{ .Release.Name }}
-#     app.kubernetes.io/version: {{ .Chart.AppVersion }}
+    app.kubernetes.io/version: {{ .Chart.AppVersion }}
-#     app.kubernetes.io/component: web
+    app.kubernetes.io/component: web
-#     app.kubernetes.io/part-of: {{ .Release.Name }}
+    app.kubernetes.io/part-of: {{ .Release.Name }}
-#   labels:
+  labels:
-#     tailscale.com/proxy-class: no-metrics
+    tailscale.com/proxy-class: no-metrics
-#   annotations:
+  annotations:
-#     tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
+    tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
-# spec:
+spec:
-#   ingressClassName: tailscale
+  ingressClassName: tailscale
-#   tls:
+  tls:
-#     - hosts:
+    - hosts:
-#         - gitea-cl01tl
+        - gitea-cl01tl
-#       secretName: gitea-cl01tl
+      secretName: gitea-cl01tl
-#   rules:
+  rules:
-#     - host: gitea-cl01tl
+    - host: gitea-cl01tl
-#       http:
+      http:
-#         paths:
+        paths:
-#           - path: /
+          - path: /
-#             pathType: ImplementationSpecific
+            pathType: ImplementationSpecific
-#             backend:
+            backend:
-#               service:
+              service:
-#                 name: gitea-http
+                name: gitea-http
-#                 port:
+                port:
-#                   name: http
+                  name: http

clusters/cl01tl/platform/vault/templates/ingress.yaml

@@ -1,32 +1,32 @@
-# apiVersion: networking.k8s.io/v1
+apiVersion: networking.k8s.io/v1
-# kind: Ingress
+kind: Ingress
-# metadata:
+metadata:
-#   name: vault-tailscale
+  name: vault-tailscale
-#   namespace: {{ .Release.Namespace }}
+  namespace: {{ .Release.Namespace }}
-#   labels:
+  labels:
-#     app.kubernetes.io/name: vault-tailscale
+    app.kubernetes.io/name: vault-tailscale
-#     app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/instance: {{ .Release.Name }}
-#     app.kubernetes.io/version: {{ .Chart.AppVersion }}
+    app.kubernetes.io/version: {{ .Chart.AppVersion }}
-#     app.kubernetes.io/component: web
+    app.kubernetes.io/component: web
-#     app.kubernetes.io/part-of: {{ .Release.Name }}
+    app.kubernetes.io/part-of: {{ .Release.Name }}
-#   labels:
+  labels:
-#     tailscale.com/proxy-class: no-metrics
+    tailscale.com/proxy-class: no-metrics
-#   annotations:
+  annotations:
-#     tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
+    tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
-# spec:
+spec:
-#   ingressClassName: tailscale
+  ingressClassName: tailscale
-#   tls:
+  tls:
-#     - hosts:
+    - hosts:
-#         - vault-cl01tl
+        - vault-cl01tl
-#       secretName: vault-cl01tl
+      secretName: vault-cl01tl
-#   rules:
+  rules:
-#     - host: vault-cl01tl
+    - host: vault-cl01tl
-#       http:
+      http:
-#         paths:
+        paths:
-#           - path: /
+          - path: /
-#             pathType: Prefix
+            pathType: Prefix
-#             backend:
+            backend:
-#               service:
+              service:
-#                 name: vault-active
+                name: vault-active
-#                 port:
+                port:
-#                   number: 8200
+                  number: 8200

clusters/cl01tl/services/harbor/templates/ingress.yaml

@@ -1,59 +0,0 @@
-# apiVersion: networking.k8s.io/v1
-# kind: Ingress
-# metadata:
-#   name: harbor-tailscale
-#   namespace: {{ .Release.Namespace }}
-#   labels:
-#     app.kubernetes.io/name: harbor-tailscale
-#     app.kubernetes.io/instance: {{ .Release.Name }}
-#     app.kubernetes.io/version: {{ .Chart.AppVersion }}
-#     app.kubernetes.io/component: web
-#     app.kubernetes.io/part-of: {{ .Release.Name }}
-#   labels:
-#     tailscale.com/proxy-class: no-metrics
-#   annotations:
-#     tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
-# spec:
-#   ingressClassName: tailscale
-#   tls:
-#     - hosts:
-#         - harbor-cl01tl
-#   rules:
-#     - host: harbor-cl01tl
-#       http:
-#         paths:
-#           - backend:
-#               service:
-#                 name: harbor-core
-#                 port:
-#                   number: 80
-#             path: /api/
-#             pathType: Prefix
-#           - backend:
-#               service:
-#                 name: harbor-core
-#                 port:
-#                   number: 80
-#             path: /service/
-#             pathType: Prefix
-#           - backend:
-#               service:
-#                 name: harbor-core
-#                 port:
-#                   number: 80
-#             path: /v2/
-#             pathType: Prefix
-#           - backend:
-#               service:
-#                 name: harbor-core
-#                 port:
-#                   number: 80
-#             path: /c/
-#             pathType: Prefix
-#           - backend:
-#               service:
-#                 name: harbor-portal
-#                 port:
-#                   number: 80
-#             path: /
-#             pathType: Prefix