Add Helm instructions for Vault

author: Joe Banks <[email protected]> 2024-05-27 00:03:45 +0100
committer: Joe Banks <[email protected]> 2024-05-27 18:15:44 +0100
commit: a044ef952a9286a5eaba15446b86246a873ea0ff (patch)
tree: 65d09f4304786ee5a14baa39e821dacfe47f6a72 /kubernetes/namespaces/vault/ingress.yaml
parent: Add pydis.wtf cert to vault namespace (diff)
1 files changed, 25 insertions, 0 deletions
diff --git a/kubernetes/namespaces/vault/ingress.yaml b/kubernetes/namespaces/vault/ingress.yaml
new file mode 100644
index 0000000..7e42525
--- /dev/null
+++ b/kubernetes/namespaces/vault/ingress.yaml
@@ -0,0 +1,25 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"
+    nginx.ingress.kubernetes.io/auth-tls-secret: "kube-system/mtls-client-crt-bundle"
+    nginx.ingress.kubernetes.io/auth-tls-error-page: "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+  name: vault
+  namespace: vault
+spec:
+  tls:
+  - hosts:
+      - "*.pydis.wtf"
+    secretName: pydis.wtf-tls
+  rules:
+  - host: vault.pydis.wtf
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: vault
+            port:
+              number: 8200
author	Joe Banks <[email protected]>	2024-05-27 00:03:45 +0100
committer	Joe Banks <[email protected]>	2024-05-27 18:15:44 +0100
commit	a044ef952a9286a5eaba15446b86246a873ea0ff (patch)
tree	65d09f4304786ee5a14baa39e821dacfe47f6a72 /kubernetes/namespaces/vault/ingress.yaml
parent	Add pydis.wtf cert to vault namespace (diff)