cluster/kube: ceph dashboard tls certificates

commit: 3187c59a86bf98baf6edcadf47d0693a901fe8ff [log] [tgz]
author: Piotr Dobrowolski <admin@tastycode.pl> Tue Apr 02 14:44:04 2019 +0200
committer: Piotr Dobrowolski <admin@tastycode.pl> Tue Apr 02 14:44:04 2019 +0200
tree: cd1d6c373165e7a734476fb80ea026ba8e2a11cf
parent: 2afe604595e7e2386bbca56843921af40ade5934 [diff] [blame]
diff --git a/cluster/kube/lib/rook.libsonnet b/cluster/kube/lib/rook.libsonnet
index 9c7b1e9..b553ca4 100644
--- a/cluster/kube/lib/rook.libsonnet
+++ b/cluster/kube/lib/rook.libsonnet

@@ -439,8 +439,19 @@
         },
 
         dashboardIngress: kube.Ingress(cluster.name("dashboard")) {
-            metadata+: cluster.metadata,
+            metadata+: cluster.metadata {
+                annotations+: {
+                    "kubernetes.io/tls-acme": "true",
+                    "certmanager.k8s.io/cluster-issuer": "letsencrypt-prod",
+                },
+            },
             spec+: {
+                tls: [
+                    {
+                        hosts: ["%s.hswaw.net" % name],
+                        secretName: cluster.name("dashboard"),
+                    },
+                ],
                 rules: [
                     {
                         host: "%s.hswaw.net" % name,
commit	3187c59a86bf98baf6edcadf47d0693a901fe8ff	[log] [tgz]
author	Piotr Dobrowolski <admin@tastycode.pl>	Tue Apr 02 14:44:04 2019 +0200
committer	Piotr Dobrowolski <admin@tastycode.pl>	Tue Apr 02 14:44:04 2019 +0200
tree	cd1d6c373165e7a734476fb80ea026ba8e2a11cf
parent	2afe604595e7e2386bbca56843921af40ade5934 [diff] [blame]