add gateway and certmanager
This commit is contained in:
45
clusters/k3s-dgx/infrastructure/cert-manager.yaml
Normal file
45
clusters/k3s-dgx/infrastructure/cert-manager.yaml
Normal file
@@ -0,0 +1,45 @@
|
||||
apiVersion: v1
|
||||
kind: Namespace
|
||||
metadata:
|
||||
name: cert-manager
|
||||
---
|
||||
apiVersion: source.toolkit.fluxcd.io/v1
|
||||
kind: HelmRepository
|
||||
metadata:
|
||||
name: cert-manager
|
||||
namespace: cert-manager
|
||||
spec:
|
||||
interval: 10m
|
||||
url: https://charts.jetstack.io
|
||||
---
|
||||
apiVersion: helm.toolkit.fluxcd.io/v2
|
||||
kind: HelmRelease
|
||||
metadata:
|
||||
name: cert-manager
|
||||
namespace: cert-manager
|
||||
spec:
|
||||
chart:
|
||||
spec:
|
||||
chart: cert-manager
|
||||
version: v1.17.0
|
||||
sourceRef:
|
||||
kind: HelmRepository
|
||||
name: cert-manager
|
||||
interval: 10m
|
||||
namespace: cert-manager
|
||||
values:
|
||||
installCRDs: true
|
||||
global:
|
||||
rbac:
|
||||
create: true
|
||||
leaderElection:
|
||||
namespace: cert-manager
|
||||
crds:
|
||||
enabled: true
|
||||
enableCertificateOwnerRef: true
|
||||
config:
|
||||
apiVersion: "controller.config.cert-manager.io/v1alpha1"
|
||||
kind: "ControllerConfiguration"
|
||||
enableGatewayAPI: true
|
||||
prometheus:
|
||||
enabled: false
|
||||
6
clusters/k3s-dgx/infrastructure/envoy-gateway-class.yaml
Normal file
6
clusters/k3s-dgx/infrastructure/envoy-gateway-class.yaml
Normal file
@@ -0,0 +1,6 @@
|
||||
apiVersion: gateway.networking.k8s.io/v1
|
||||
kind: GatewayClass
|
||||
metadata:
|
||||
name: envoy
|
||||
spec:
|
||||
controllerName: gateway.envoyproxy.io/gatewayclass-controller
|
||||
34
clusters/k3s-dgx/infrastructure/envoy-gateway-system.yaml
Normal file
34
clusters/k3s-dgx/infrastructure/envoy-gateway-system.yaml
Normal file
@@ -0,0 +1,34 @@
|
||||
apiVersion: v1
|
||||
kind: Namespace
|
||||
metadata:
|
||||
name: envoy-gateway-system
|
||||
---
|
||||
apiVersion: source.toolkit.fluxcd.io/v1
|
||||
kind: OCIRepository
|
||||
metadata:
|
||||
name: gateway-helm
|
||||
namespace: envoy-gateway-system
|
||||
spec:
|
||||
interval: 1h
|
||||
url: oci://docker.io/envoyproxy/gateway-helm
|
||||
layerSelector:
|
||||
mediaType: "application/vnd.cncf.helm.chart.content.v1.tar+gzip"
|
||||
operation: copy
|
||||
ref:
|
||||
tag: v1.7.2
|
||||
---
|
||||
apiVersion: helm.toolkit.fluxcd.io/v2
|
||||
kind: HelmRelease
|
||||
metadata:
|
||||
name: envoy-gateway
|
||||
namespace: envoy-gateway-system
|
||||
spec:
|
||||
interval: 5m
|
||||
releaseName: eg
|
||||
chartRef:
|
||||
kind: OCIRepository
|
||||
name: gateway-helm
|
||||
upgrade:
|
||||
strategy:
|
||||
name: RetryOnFailure
|
||||
retryInterval: 5m
|
||||
6
clusters/k3s-dgx/infrastructure/kustomization.yaml
Normal file
6
clusters/k3s-dgx/infrastructure/kustomization.yaml
Normal file
@@ -0,0 +1,6 @@
|
||||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
resources:
|
||||
- cert-manager.yaml
|
||||
- envoy-gateway.yaml
|
||||
- envoy-gateway-class.yaml
|
||||
Reference in New Issue
Block a user