github.com/verrazzano/verrazzano@v1.7.0/platform-operator/thirdparty/charts/thanos/templates/storegateway/tls-secrets.yaml

github.com/verrazzano/verrazzano@v1.7.0/platform-operator/thirdparty/charts/thanos/templates/storegateway/tls-secrets.yaml (about)

     1  {{- if .Values.storegateway.ingress.enabled }}
     2  {{- if .Values.storegateway.ingress.secrets }}
     3  {{- range .Values.storegateway.ingress.secrets }}
     4  apiVersion: v1
     5  kind: Secret
     6  metadata:
     7    name: {{ include "common.names.fullname" $ }}-storegateway
     8    namespace: {{ $.Release.Namespace | quote }}
     9    labels: {{- include "common.labels.standard" $ | nindent 4 }}
    10      app.kubernetes.io/component: storegateway
    11      {{- if $.Values.commonLabels }}
    12      {{- include "common.tplvalues.render" ( dict "value" $.Values.commonLabels "context" $ ) | nindent 4 }}
    13      {{- end }}
    14    {{- if $.Values.commonAnnotations }}
    15    annotations: {{- include "common.tplvalues.render" ( dict "value" $.Values.commonAnnotations "context" $ ) | nindent 4 }}
    16    {{- end }}
    17  type: kubernetes.io/tls
    18  data:
    19    tls.crt: {{ .certificate | b64enc }}
    20    tls.key: {{ .key | b64enc }}
    21  ---
    22  {{- end }}
    23  {{- end }}
    24  {{- if and .Values.storegateway.ingress.tls .Values.storegateway.ingress.selfSigned }}
    25  {{- $secretName := printf "%s-tls" .Values.storegateway.ingress.hostname }}
    26  {{- $ca := genCA "thanos-storegateway-ca" 365 }}
    27  {{- $cert := genSignedCert .Values.storegateway.ingress.hostname nil (list .Values.storegateway.ingress.hostname) 365 $ca }}
    28  apiVersion: v1
    29  kind: Secret
    30  metadata:
    31    name: {{ $secretName }}
    32    namespace: {{ .Release.Namespace | quote }}
    33    labels: {{- include "common.labels.standard" . | nindent 4 }}
    34      app.kubernetes.io/component: storegateway
    35      {{- if .Values.commonLabels }}
    36      {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
    37      {{- end }}
    38    {{- if .Values.commonAnnotations }}
    39    annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
    40    {{- end }}
    41  type: kubernetes.io/tls
    42  data:
    43    ca.crt: {{ include "common.secrets.lookup" (dict "secret" $secretName "key" "ca.crt" "defaultValue" $ca.Cert "context" $) }}
    44    tls.crt: {{ include "common.secrets.lookup" (dict "secret" $secretName "key" "tls.crt" "defaultValue" $cert.Cert "context" $) }}
    45    tls.key: {{ include "common.secrets.lookup" (dict "secret" $secretName "key" "tls.key" "defaultValue" $cert.Key "context" $) }}
    46  {{- end }}
    47  {{- end }}