apps/site/site.yaml (view raw)
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 |
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: icyphox.sh
namespace: default
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/configuration-snippet: |
if ($request_uri !~ "^/.well-known/webfinger") {
return 301 https://anirudh.fi$request_uri;
}
spec:
ingressClassName: nginx
tls:
- hosts:
- icyphox.sh
secretName: icyphox-sh-tls
rules:
- host: icyphox.sh
http:
paths:
- path: /.well-known/webfinger
pathType: ImplementationSpecific
backend:
service:
name: honk
port:
number: 8080
- host: icyphox.sh
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: garage
port:
number: 80
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: anirudh.fi
namespace: default
annotations:
cert-manager.io/cluster-issuer: "letsencrypt-prod"
nginx.ingress.kubernetes.io/ssl-redirect: "true"
spec:
ingressClassName: nginx
tls:
- hosts:
- anirudh.fi
secretName: anirudh-fi-tls
rules:
- host: anirudh.fi
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: garage
port:
number: 80
|