core-deployments/traefik/values.yaml

52 lines
894 B
YAML

---
deployment:
kind: DaemonSet
minReadySeconds: 120
dnsPolicy: ClusterFirstWithHostNet
hostNetwork: true
ports:
web:
port: 80
redirectTo:
port: "websecure"
websecure:
port: 443
metrics:
port: 9101
securityContext:
capabilities:
drop: [ALL]
add: [NET_BIND_SERVICE]
readOnlyRootFilesystem: true
runAsGroup: 0
runAsNonRoot: false
runAsUser: 0
service:
type: NodePort
ipFamilyPolicy: PreferDualStack
updateStrategy:
type: RollingUpdate
rollingUpdate:
maxUnavailable: 1
maxSurge: 0
providers:
kubernetesCRD:
allowCrossNamespace: true
ingressRoute:
dashboard:
enabled: true
matchRule: Host(`traefik.services.yolokube.de`)
entryPoints: ["traefik", "websecure"]
middlewares:
- name: authentik
namespace: authentik
tls:
secretName: traefik-tls-key
logs:
general:
level: INFO