gravitl/netmaker
1
1
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2025-09-06 21:24:16 +08:00
Code Issues Projects Releases Packages Wiki Activity
netmaker/k8s/netmaker-singlenode/05-ingress-traefik.yaml
afeiszli 314e5a143d initial commit on new k8s templates
2022-06-28 07:21:16 -04:00

75 lines
No EOL
1.6 KiB
YAML
Raw Blame History

---
apiVersion: traefik.containo.us/v1alpha1
kind: Middleware
metadata:
name: secheaders
namespace: netmaker
spec:
headers:
stsIncludeSubdomains: true
stsPreload: true
stsSeconds: 31536000
forceSTSHeader: true
sslRedirect: true
referrerPolicy: "same-origin"
frameDeny: true
contentTypeNosniff: true
browserXssFilter: true
accessControlAllowMethods: ["GET", "OPTIONS", "PUT"]
accessControlMaxAge: 100
customFrameOptionsValue: SAMEORIGIN
contentSecurityPolicy: frame-ancestors 'self'
permissionsPolicy: geolocation=(), microphone=()
referrerPolicy: no-referrer
---
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: nm-api-ingress-tls
namespace: netmaker
spec:
entryPoints:
- websecure
routes:
- match: Host(`api.BASE_DOMAIN`)
kind: Rule
services:
- name: netmaker-api
port: 8081
tls:
certResolver: CERT_PROVIDER
---
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: nm-ui-ingress-tls
namespace: netmaker
spec:
entryPoints:
- websecure
routes:
- match: Host(`dashboard.BASE_DOMAIN`)
kind: Rule
services:
- name: netmaker-ui
port: 80
middlewares:
- name: secheaders
tls:
certResolver: CERT_PROVIDER
---
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRouteTCP
metadata:
namespace: netmaker
name: nm-mq-ingress-tls
spec:
entryPoints:
- websecure
routes:
- match: HostSNI(`broker.BASE_DOMAIN`)
services:
- name: netmaker-mq
port: 8883
tls:
passthrough: true
Reference in a new issue View git blame Copy permalink