traefik/pkg/provider/kubernetes/crd/fixtures/tcp/with_tls_options.yml

69 lines
1.2 KiB
YAML
Raw Normal View History

apiVersion: v1
kind: Secret
metadata:
name: secret-ca1
namespace: default
data:
tls.ca: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCi0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0=
---
apiVersion: v1
kind: Secret
metadata:
name: secret-ca2
namespace: default
data:
tls.ca: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCi0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0=
---
2023-03-20 15:38:08 +01:00
apiVersion: traefik.io/v1alpha1
kind: TLSOption
metadata:
name: foo
namespace: default
spec:
2019-07-12 17:50:04 +02:00
minVersion: VersionTLS12
sniStrict: true
cipherSuites:
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_RSA_WITH_AES_256_GCM_SHA384
2019-07-12 17:50:04 +02:00
clientAuth:
secretNames:
- secret-ca1
- secret-ca2
2019-07-12 17:50:04 +02:00
clientAuthType: VerifyClientCertIfGiven
---
apiVersion: v1
kind: Secret
metadata:
name: supersecret
namespace: default
data:
tls.crt: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCi0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0=
tls.key: LS0tLS1CRUdJTiBQUklWQVRFIEtFWS0tLS0tCi0tLS0tRU5EIFBSSVZBVEUgS0VZLS0tLS0=
---
2023-03-20 15:38:08 +01:00
apiVersion: traefik.io/v1alpha1
kind: IngressRouteTCP
metadata:
2019-07-05 17:24:04 +02:00
name: test.route
namespace: default
spec:
entryPoints:
- foo
routes:
- match: HostSNI(`foo.com`)
services:
- name: whoamitcp
port: 8000
tls:
options:
name: foo