generated from giantswarm/template-app
-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cert-manager-app fixes #381
Merged
Merged
Changes from all commits
Commits
Show all changes
35 commits
Select commit
Hold shift + click to select a range
aaee1db
http01 ingress class set to default
ssyno dd855e8
enable cilium policy
ssyno 91a8d94
template test
ssyno d810015
test other parsing
ssyno 8e23350
chart version revert
ssyno 7de59a7
clusterissuer chart version change
ssyno adc0f52
test
ssyno 04b2694
fix json
ssyno f554150
test ver
ssyno 6370a78
ingress tests
ssyno 07baf28
small fix
ssyno fab624a
solver test
ssyno 078e50e
test quotes
ssyno b63db23
remove quote
ssyno 412b17c
try ingressClassName default
ssyno 9901d86
empty ingressclassname
ssyno 4c4cad8
test on template
ssyno b19d2c2
revert test
ssyno 47de6e6
script for ingressclass
ssyno 3a537e7
helm lint fix
ssyno 44fb982
bash to sh on script
ssyno 2e6566a
policy fix
ssyno fa60665
reverts
ssyno 848aa71
back to nginx
ssyno 60a37e9
typo
ssyno f5de359
typo
ssyno c1a97ca
network policies
ssyno 08b2b47
cure for PR
ssyno 40109d6
typo on ingress
ssyno f32a2d9
test both ingress-egress
ssyno c1215dd
remove cilium netpol
ssyno ee2bd66
ciliumNetworkPolicy disabled by default
ssyno fbc9acb
cilium requred for CAPZ
ssyno cb46e9c
ciliumnetwork policies for acme solvers
ssyno 2f3742e
ciliumNetworkPolicy off by default
ssyno File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file was deleted.
Oops, something went wrong.
19 changes: 19 additions & 0 deletions
19
...er/charts/cert-manager-giantswarm-clusterissuer/templates/acme-solvers-networkpolicy.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,19 @@ | ||
| apiVersion: networking.k8s.io/v1 | ||
| kind: NetworkPolicy | ||
| metadata: | ||
| name: {{ .Values.name }}-http01-solvers | ||
| labels: | ||
| {{- include "issuerLabels" . | nindent 4 }} | ||
| annotations: | ||
| {{- include "issuerAnnotations" . | nindent 4 }} | ||
| spec: | ||
| podSelector: | ||
| matchLabels: | ||
| acme.cert-manager.io/http01-solver: "true" | ||
| policyTypes: | ||
| - Ingress | ||
| - Egress | ||
| ingress: | ||
| - {} | ||
| egress: | ||
| - {} | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -46,4 +46,4 @@ acme: | |
| secretAccessKey: "" | ||
| http01: | ||
| enabled: true | ||
| ingressClassName: nginx | ||
| ingressClassName: "nginx" | ||
18 changes: 18 additions & 0 deletions
18
...ger/charts/cert-manager-giantswarm-netpol/templates/acme-solvers-ciliumnetworkpolicy.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| apiVersion: "cilium.io/v2" | ||
| kind: CiliumNetworkPolicy | ||
| metadata: | ||
| name: {{ template "cert-manager.fullname" . }}-clusterissuer-acme-solvers | ||
| namespace: giantswarm | ||
| labels: | ||
| app: {{ template "cert-manager.name" . }}-clusterissuer-acme-solvers | ||
| app.kubernetes.io/name: {{ template "cert-manager.name" . }}-clusterissuer-acme-solvers | ||
| app.kubernetes.io/instance: {{ .Release.Name }} | ||
| {{- include "labels" . | nindent 4 }} | ||
| spec: | ||
| endpointSelector: | ||
| matchLabels: | ||
| acme.cert-manager.io/http01-solver: "true" | ||
| ingress: | ||
| - {} | ||
| egress: | ||
| - {} |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This comment was marked as outdated.
Sorry, something went wrong.