| 1234567891011121314151617181920212223242526272829303132333435363738394041424344 |
- {{- if .Values.ingress.enabled }}
- {{- if .Values.ingress.secrets }}
- {{- range .Values.ingress.secrets }}
- apiVersion: v1
- kind: Secret
- metadata:
- name: {{ .name }}
- namespace: {{ $.Release.Namespace | quote }}
- labels: {{- include "common.labels.standard" $ | nindent 4 }}
- {{- if $.Values.commonLabels }}
- {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
- {{- end }}
- {{- if $.Values.commonAnnotations }}
- annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
- {{- end }}
- type: kubernetes.io/tls
- data:
- tls.crt: {{ .certificate | b64enc }}
- tls.key: {{ .key | b64enc }}
- ---
- {{- end }}
- {{- end }}
- {{- if and .Values.ingress.tls .Values.ingress.selfSigned }}
- {{- $ca := genCA "halo-ca" 365 }}
- {{- $cert := genSignedCert .Values.ingress.hostname nil (list .Values.ingress.hostname) 365 $ca }}
- apiVersion: v1
- kind: Secret
- metadata:
- name: {{ printf "%s-tls" .Values.ingress.hostname }}
- namespace: {{ .Release.Namespace | quote }}
- labels: {{- include "common.labels.standard" . | nindent 4 }}
- {{- if .Values.commonLabels }}
- {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
- {{- end }}
- {{- if .Values.commonAnnotations }}
- annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
- {{- end }}
- type: kubernetes.io/tls
- data:
- tls.crt: {{ $cert.Cert | b64enc | quote }}
- tls.key: {{ $cert.Key | b64enc | quote }}
- ca.crt: {{ $ca.Cert | b64enc | quote }}
- {{- end }}
- {{- end }}
|
