2020-09-11 15:40:03 +02:00
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
2021-06-14 18:06:10 +02:00
|
|
|
metadata:
|
2021-06-28 10:07:17 +02:00
|
|
|
name: root-ca0
|
2021-06-14 18:06:10 +02:00
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
foobar: VEVTVFJPT1RDQVMw
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
2020-09-11 15:40:03 +02:00
|
|
|
metadata:
|
2021-06-24 17:32:07 +02:00
|
|
|
name: root-ca1
|
2020-09-11 15:40:03 +02:00
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
2021-06-14 18:06:10 +02:00
|
|
|
tls.ca: VEVTVFJPT1RDQVMx
|
2020-09-11 15:40:03 +02:00
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
2021-06-24 17:32:07 +02:00
|
|
|
name: root-ca2
|
2020-09-11 15:40:03 +02:00
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
tls.ca: VEVTVFJPT1RDQVMy
|
|
|
|
|
|
2021-06-14 18:06:10 +02:00
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
2021-06-28 10:07:17 +02:00
|
|
|
name: root-ca3
|
2021-06-14 18:06:10 +02:00
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
ca.crt: VEVTVFJPT1RDQVMz
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
2021-06-28 10:07:17 +02:00
|
|
|
name: root-ca4
|
2021-06-14 18:06:10 +02:00
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
ca.crt: VEVTVFJPT1RDQVM0
|
2022-08-29 15:24:07 +08:00
|
|
|
tls.ca: VEVTVFJPT1RDQVM1 # <-- This should be the preferred one.
|
2021-06-14 18:06:10 +02:00
|
|
|
|
2020-09-11 15:40:03 +02:00
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
|
|
|
|
name: mtls1
|
|
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
tls.crt: VEVTVENFUlQx
|
|
|
|
|
tls.key: VEVTVEtFWTE=
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
|
|
|
|
name: mtls2
|
|
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
tls.crt: VEVTVENFUlQy
|
|
|
|
|
tls.key: VEVTVEtFWTI=
|
|
|
|
|
|
2021-06-14 18:06:10 +02:00
|
|
|
---
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Secret
|
|
|
|
|
metadata:
|
|
|
|
|
name: allcerts
|
|
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
data:
|
|
|
|
|
ca.crt: VEVTVEFMTENFUlRT
|
|
|
|
|
tls.crt: VEVTVENFUlQz
|
|
|
|
|
tls.key: VEVTVEtFWTM=
|
|
|
|
|
|
2020-09-11 15:40:03 +02:00
|
|
|
---
|
|
|
|
|
apiVersion: traefik.containo.us/v1alpha1
|
|
|
|
|
kind: ServersTransport
|
|
|
|
|
metadata:
|
|
|
|
|
name: test
|
|
|
|
|
namespace: foo
|
|
|
|
|
|
|
|
|
|
spec:
|
|
|
|
|
serverName: "test"
|
|
|
|
|
insecureSkipVerify: true
|
|
|
|
|
maxIdleConnsPerHost: 42
|
2021-09-16 12:18:08 +02:00
|
|
|
disableHTTP2: true
|
2021-09-17 08:56:07 +02:00
|
|
|
peerCertURI: foo://bar
|
2020-09-11 15:40:03 +02:00
|
|
|
rootCAsSecrets:
|
2021-09-17 08:56:07 +02:00
|
|
|
- root-ca0
|
|
|
|
|
- root-ca1
|
|
|
|
|
- root-ca2
|
|
|
|
|
- root-ca3
|
|
|
|
|
- root-ca4
|
|
|
|
|
- allcerts
|
2020-09-11 15:40:03 +02:00
|
|
|
certificatesSecrets:
|
2021-09-17 08:56:07 +02:00
|
|
|
- mtls1
|
|
|
|
|
- mtls2
|
|
|
|
|
- allcerts
|
2020-09-11 15:40:03 +02:00
|
|
|
forwardingTimeouts:
|
|
|
|
|
dialTimeout: 42
|
|
|
|
|
responseHeaderTimeout: 42s
|
|
|
|
|
idleConnTimeout: 42ms
|
2021-11-09 12:16:08 +01:00
|
|
|
readIdleTimeout: 42s
|
|
|
|
|
pingTimeout: 42s
|
2021-09-16 15:12:13 +02:00
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: traefik.containo.us/v1alpha1
|
|
|
|
|
kind: ServersTransport
|
|
|
|
|
metadata:
|
|
|
|
|
name: test
|
|
|
|
|
namespace: default
|
|
|
|
|
|
|
|
|
|
spec:
|
|
|
|
|
serverName: "test"
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
apiVersion: traefik.containo.us/v1alpha1
|
|
|
|
|
kind: IngressRoute
|
|
|
|
|
metadata:
|
|
|
|
|
name: test.route
|
|
|
|
|
namespace: default
|
|
|
|
|
|
|
|
|
|
spec:
|
|
|
|
|
entryPoints:
|
|
|
|
|
- foo
|
|
|
|
|
|
|
|
|
|
routes:
|
|
|
|
|
- match: Host(`foo.com`)
|
|
|
|
|
kind: Rule
|
|
|
|
|
services:
|
|
|
|
|
- name: external-svc-with-https
|
|
|
|
|
port: 443
|
|
|
|
|
serversTransport: test
|
|
|
|
|
- name: whoamitls
|
|
|
|
|
port: 443
|
|
|
|
|
serversTransport: default-test
|
|
|
|
|
|
