sorb/axion1337.chat-gitops
1
0
Fork 0
Code Issues 5 Pull Requests Actions Packages Projects 1 Releases 3 Wiki Activity

fix: add per-service TLS and cert-manager annotations

Browse Source
This commit is contained in:
Scrublord MacBad 2026-04-21 22:24:34 +02:00
parent 16fe49a53e
commit a21afd98b4
1 changed files with 36 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
apps/production/element-server-suite.yaml
View File

@ -26,39 +26,66 @@ spec:
enabled: true enabled: true
ingress: ingress:
host: matrix.axion1337.chat host: matrix.axion1337.chat
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- secretName: matrix-axion1337-chat-tls
hosts:
- matrix.axion1337.chat
# Matrix Authentication Service braucht eine Subdomain # Matrix Authentication Service braucht eine Subdomain
matrixAuthenticationService: matrixAuthenticationService:
enabled: true enabled: true
ingress: ingress:
host: account.axion1337.chat host: account.axion1337.chat
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- secretName: account-axion1337-chat-tls
hosts:
- account.axion1337.chat
# Matrix RTC (Element Call) braucht auch eine Subdomain # Matrix RTC (Element Call) braucht auch eine Subdomain
matrixRTC: matrixRTC:
enabled: true enabled: true
ingress: ingress:
host: mrtc.axion1337.chat host: mrtc.axion1337.chat
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- secretName: mrtc-axion1337-chat-tls
hosts:
- mrtc.axion1337.chat
# Element Web # Element Web
elementWeb: elementWeb:
enabled: true enabled: true
ingress: ingress:
host: axion1337.chat host: axion1337.chat
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- secretName: axion1337-chat-tls
hosts:
- axion1337.chat
# Element Admin # Element Admin
elementAdmin: elementAdmin:
enabled: true enabled: true
ingress: ingress:
host: admin.axion1337.chat host: admin.axion1337.chat
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tls:
- secretName: admin-axion1337-chat-tls
hosts:
- admin.axion1337.chat
# Well-Known auf der Apex-Domain (axion1337.chat/.well-known/matrix/*) # Well-Known auf der Apex-Domain (axion1337.chat/.well-known/matrix/*)
wellKnownDelegation: wellKnownDelegation:
enabled: true enabled: true
# Gemeinsame Ingress-Basis (wird von allen Komponenten geerbt)
ingress:
className: traefik
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.tls: "true"
tlsEnabled: true