| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 |
- apiVersion: helm.cattle.io/v1
- kind: HelmChartConfig
- metadata:
- name: traefik
- namespace: kube-system
- spec:
- valuesContent: |-
- ports:
- web:
- exposedPort: 9001
- websecure:
- exposedPort: 9000
- additionalArguments:
- # Auto cert renewal via cloudflare
- - "--certificatesresolvers.letsencrypt.acme.email=joshbicking@comcast.net"
- - "--certificatesresolvers.letsencrypt.acme.storage=/data/acme.json"
- - "--certificatesresolvers.letsencrypt.acme.dnschallenge.provider=cloudflare"
- - "--certificatesresolvers.letsencrypt.acme.dnschallenge.resolvers=1.1.1.1:53,8.8.8.8:53"
- - "--entrypoints.websecure.http.tls.certResolver=letsencrypt"
- - "--entrypoints.websecure.http.tls.domains[0].main=s3.bnuuy.org"
- # debug, uncomment for testing
- # - "--log.level=DEBUG"
- # - "--certificatesresolvers.letsencrypt.acme.caServer=https://acme-staging-v02.api.letsencrypt.org/directory"
- env:
- - name: CLOUDFLARE_EMAIL
- valueFrom:
- secretKeyRef:
- name: cloudflare-secrets
- key: email
- optional: false
- - name: CLOUDFLARE_API_KEY
- valueFrom:
- secretKeyRef:
- name: cloudflare-secrets
- key: api-key
- optional: false
- persistence:
- enabled: true
- storageClass: local-path
- # Fix for acme.json file being changed to 660 from 600
- podSecurityContext:
- fsGroup: null
- service:
- spec:
- externalTrafficPolicy: Local
- hostNetwork: true
|
