WIP: istio-gateway(only the Gateway object, not the gatewayd).
Showing
4 changed files
with
97 additions
and
0 deletions
istio-gateway/charts/gateway/gateway.yaml
0 → 100644
| 1 | --- | ||
| 2 | apiVersion: cert-manager.io/v1 | ||
| 3 | kind: Certificate | ||
| 4 | metadata: | ||
| 5 | name: istio-gateway-cert | ||
| 6 | spec: | ||
| 7 | secretName: istio-gateway | ||
| 8 | dnsNames: | ||
| 9 | - '*' | ||
| 10 | issuerRef: | ||
| 11 | name: ca-issuer | ||
| 12 | # We can reference ClusterIssuers by changing the kind here. | ||
| 13 | # The default value is Issuer (i.e. a locally namespaced Issuer) | ||
| 14 | kind: ClusterIssuer | ||
| 15 | group: cert-manager.io | ||
| 16 | --- | ||
| 17 | apiVersion: networking.istio.io/v1beta1 | ||
| 18 | kind: Gateway | ||
| 19 | metadata: | ||
| 20 | name: istio-gateway | ||
| 21 | spec: {} | ||
| 22 |
| 1 | namespace: default | ||
| 2 | name: default | ||
| 3 | selector: {} | ||
| 4 | tls: | ||
| 5 | hosts: | ||
| 6 | - "*" | ||
| 7 | issuerRef: | ||
| 8 | name: ca-issuer | ||
| 9 | # We can reference ClusterIssuers by changing the kind here. | ||
| 10 | # The default value is Issuer (i.e. a locally namespaced Issuer) | ||
| 11 | kind: ClusterIssuer | ||
| 12 | group: cert-manager.io | ||
| 13 | mode: SIMPLE | ||
| 14 | http: | ||
| 15 | hosts: | ||
| 16 | - "*" | ||
| 17 |
istio-gateway/helmfile.yaml
0 → 100644
| 1 | bases: | ||
| 2 | - ../common/environments.yaml | ||
| 3 | |||
| 4 | --- | ||
| 5 | |||
| 6 | releases: | ||
| 7 | - name: istio-gateway-{{ .Values.name }} | ||
| 8 | namespace: {{ .Values.namespace }} | ||
| 9 | chart: charts/gateway | ||
| 10 | disableValidationOnInstall: true | ||
| 11 | values: | ||
| 12 | - nameSuffix: -{{ .Values.name }} | ||
| 13 | strategicMergePatches: | ||
| 14 | - apiVersion: networking.istio.io/v1beta1 | ||
| 15 | kind: Gateway | ||
| 16 | metadata: | ||
| 17 | name: istio-gateway-{{ .Values.name }} | ||
| 18 | namespace: {{ .Values.namespace }} | ||
| 19 | spec: | ||
| 20 | selector: {{ .Values.selector | toYaml | nindent 12 }} | ||
| 21 | servers: | ||
| 22 | {{- if .Values.http.hosts }} | ||
| 23 | - port: | ||
| 24 | name: http | ||
| 25 | number: 80 | ||
| 26 | protocol: HTTP | ||
| 27 | hosts: {{ .Values.http.hosts | toYaml | nindent 16 }} | ||
| 28 | {{- end }} | ||
| 29 | {{- if .Values.tls.hosts }} | ||
| 30 | - port: | ||
| 31 | name: https | ||
| 32 | number: 443 | ||
| 33 | protocol: HTTPS | ||
| 34 | hosts: {{ .Values.http.hosts | toYaml | nindent 16 }} | ||
| 35 | tls: | ||
| 36 | credentialName: istio-gateway-cert-{{ .Values.name }} | ||
| 37 | mode: {{ .Values.tls.mode | quote }} | ||
| 38 | {{- end }} | ||
| 39 | - apiVersion: cert-manager.io/v1 | ||
| 40 | kind: Certificate | ||
| 41 | metadata: | ||
| 42 | name: istio-gateway-cert-{{ .Values.name }} | ||
| 43 | namespace: {{ .Values.namespace }} | ||
| 44 | {{- if .Values.tls.hosts }} | ||
| 45 | spec: | ||
| 46 | secretName: istio-gateway-cert-{{ .Values.name }} | ||
| 47 | dnsNames: {{ .Values.tls.hosts | toYaml | nindent 12 }} | ||
| 48 | issuerRef: {{ .Values.tls.issuerRef | toYaml | nindent 12 }} | ||
| 49 | {{ else }} | ||
| 50 | $patch: delete | ||
| 51 | {{- end }} | ||
| 52 |
-
Please register or sign in to post a comment