sarex/iac
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
86858bd7b4
iac/clusters/yc-ecp/infrastructure/vault-istio.yaml
Kochetkov S 86858bd7b4 Add Vault to yc-ecp
2026-06-02 16:14:45 +03:00

58 lines
1.1 KiB
YAML
Raw Blame History

apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: vault-cert
namespace: istio-system
spec:
dnsNames:
- vault.158-160-200-60.nip.io
issuerRef:
kind: ClusterIssuer
name: letsencrypt-prod
secretName: vault-tls
---
apiVersion: networking.istio.io/v1beta1
kind: Gateway
metadata:
name: vault-gateway
namespace: gateway
spec:
selector:
istio: ingressgateway
servers:
- hosts:
- vault.158-160-200-60.nip.io
port:
name: http
number: 80
protocol: HTTP
- hosts:
- vault.158-160-200-60.nip.io
port:
name: https
number: 443
protocol: HTTPS
tls:
credentialName: vault-tls
mode: SIMPLE
---
apiVersion: networking.istio.io/v1beta1
kind: VirtualService
metadata:
name: vault-virt-service
namespace: vault
spec:
gateways:
- gateway/vault-gateway
hosts:
- vault.158-160-200-60.nip.io
http:
- match:
- uri:
prefix: /
route:
- destination:
host: vault-vault-contour.vault.svc.cluster.local
port:
number: 8200
Reference in New Issue View Git Blame Copy Permalink