K3S-HOME/applications
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

REFACTOR(traefik): use Certificate resource instead of Ingress

Browse Source 
- Remove conflicting Ingress that was also routing to crafty
- Use cert-manager Certificate directly for TLS cert issuance
- Only IngressRoute handles routing to backend
This commit is contained in:
Mayne0213
2026-01-01 10:59:45 +09:00
parent dfd981e394
commit b822514532
1 changed files with 8 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
crafty/ingress.yaml
View File

@@ -3,8 +3,6 @@ kind: IngressRoute
metadata: metadata:
name: crafty-ingress name: crafty-ingress
namespace: crafty namespace: crafty
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec: spec:
entryPoints: entryPoints:
- websecure - websecure
@@ -19,27 +17,15 @@ spec:
tls: tls:
secretName: crafty-tls secretName: crafty-tls
--- ---
apiVersion: networking.k8s.io/v1 apiVersion: cert-manager.io/v1
kind: Ingress kind: Certificate
metadata: metadata:
name: crafty-tls-cert name: crafty-tls
namespace: crafty namespace: crafty
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
spec: spec:
ingressClassName: traefik
tls:
- hosts:
- crafty0213.kro.kr
secretName: crafty-tls secretName: crafty-tls
rules: issuerRef:
- host: crafty0213.kro.kr name: letsencrypt-prod
http: kind: ClusterIssuer
paths: dnsNames:
- path: / - crafty0213.kro.kr
pathType: Prefix
backend:
service:
name: crafty
port:
number: 8443