Revert "Revert "disable basicauth for acme challenges 🍇""

This reverts commit b3ccda1728.
This commit is contained in:
Aaron Riedel 2023-04-23 00:42:43 +02:00
parent b3ccda1728
commit 8c6ea5fb15
Signed by: aaron
GPG key ID: 643004654D40D577
2 changed files with 10 additions and 1 deletions

View file

@ -1,6 +1,7 @@
controller: controller:
enableSnippets: true
hostNetwork: true hostNetwork: true
setAsDefaultIngress: true setAsDefaultIngress: true
service: service:
create: false create: false
kind: daemonset kind: daemonset

View file

@ -9,6 +9,10 @@ metadata:
cert-manager.io/cluster-issuer: letsencrypt-prod cert-manager.io/cluster-issuer: letsencrypt-prod
acme.cert-manager.io/http01-edit-in-place: "true" acme.cert-manager.io/http01-edit-in-place: "true"
ingress.kubernetes.io/ssl-redirect: "false" ingress.kubernetes.io/ssl-redirect: "false"
nginx.org/server-snippets: |
location ^~ /.well-known/acme-challenge/ {
auth_basic off;
}
nginx.org/basic-auth-secret: prometheus-basic-auth-secret nginx.org/basic-auth-secret: prometheus-basic-auth-secret
#nginx.org/ssl-services: "prometheus-server" #nginx.org/ssl-services: "prometheus-server"
spec: spec:
@ -38,6 +42,10 @@ metadata:
cert-manager.io/cluster-issuer: letsencrypt-prod cert-manager.io/cluster-issuer: letsencrypt-prod
acme.cert-manager.io/http01-edit-in-place: "true" acme.cert-manager.io/http01-edit-in-place: "true"
ingress.kubernetes.io/ssl-redirect: "false" ingress.kubernetes.io/ssl-redirect: "false"
nginx.org/server-snippets: |
location ^~ /.well-known/acme-challenge/ {
auth_basic off;
}
nginx.org/basic-auth-secret: prometheus-basic-auth-secret nginx.org/basic-auth-secret: prometheus-basic-auth-secret
#nginx.org/ssl-services: "prometheus-server" #nginx.org/ssl-services: "prometheus-server"
spec: spec: