feat: ArgoCD extern erreichbar + RBAC-Grundkonfiguration
Ingress via Traefik auf argocd.unreg-hdw.de mit Let's Encrypt, insecure-Mode für TLS-Terminierung durch Traefik, lokale User und RBAC-Vorlage (role:readonly). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
HDW
26
infrastructure/argocd/argocd-ingress.yaml
Normal file
26
infrastructure/argocd/argocd-ingress.yaml
Normal file
@@ -0,0 +1,26 @@
|
||||
apiVersion: networking.k8s.io/v1
|
||||
kind: Ingress
|
||||
metadata:
|
||||
name: argocd-ingress
|
||||
namespace: argocd
|
||||
annotations:
|
||||
kubernetes.io/ingress.class: traefik
|
||||
cert-manager.io/cluster-issuer: letsencrypt-prod
|
||||
argocd.argoproj.io/sync-wave: "6"
|
||||
spec:
|
||||
ingressClassName: traefik
|
||||
rules:
|
||||
- host: argocd.unreg-hdw.de
|
||||
http:
|
||||
paths:
|
||||
- path: /
|
||||
pathType: Prefix
|
||||
backend:
|
||||
service:
|
||||
name: argocd-server
|
||||
port:
|
||||
number: 80
|
||||
tls:
|
||||
- hosts:
|
||||
- argocd.unreg-hdw.de
|
||||
secretName: argocd-tls-cert
|
||||
Reference in New Issue
Block a user