#tunnels created with: # kubectl create secret generic -n cloudflare-tunnel cloudflare-tunnel-werts-credentials --from-file=credentials.json=$HOME/.cloudflared/060edc8a-f8f3-46fc-b007-ded654fdf6f1.json # kubectl create secret generic -n cloudflare-tunnel cloudflare-tunnel-strudelline-credentials --from-file=credentials.json=$HOME/.cloudflared/12dcd4b7-4987-4639-8bb3-0da0dfd1b1bc.json --- apiVersion: argoproj.io/v1alpha1 kind: Application metadata: name: cloudflare-tunnel-werts namespace: argocd annotations: docs.strudelline.net/origin: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/install-and-setup/tunnel-guide/local/local-management/configuration-file/ finalizers: - resources-finalizer.argocd.argoproj.io spec: project: default destination: server: "https://kubernetes.default.svc" namespace: cloudflare-tunnel syncPolicy: automated: prune: true selfHeal: true source: chart: cloudflare-tunnel repoURL: https://rlex.github.io/helm-charts targetRevision: 0.7.0 helm: values: |- extraEnv: - name: TUNNEL_TRANSPORT_PROTOCOL value: http2 cloudflared: tunnelSecret: cloudflare-tunnel-werts-credentials tunnel: 060edc8a-f8f3-46fc-b007-ded654fdf6f1 ingress: - hostname: auth.werts.us service: https://cascade-service.keycloak.svc.cluster.local originRequest: noTLSVerify: true - hostname: red-1.werts.us service: http://node-red-1.node-red.svc.cluster.local:4180 - hostname: chat.werts.us service: http://synapse-werts.synapse.svc.cluster.local:8008 - hostname: noctowl.werts.us service: http://172.16.18.1:5000 originRequest: noTLSVerify: true - hostname: werts.us service: http://haproxy-ingress.haproxy-ingress.svc.cluster.local:81 - hostname: '*.werts.us' service: http://haproxy-ingress.haproxy-ingress.svc.cluster.local:81 - hostname: hello.werts.us service: hello_world - service: http_status:404 serviceMonitor: enabled: false --- apiVersion: argoproj.io/v1alpha1 kind: Application metadata: name: cloudflare-tunnel-strudelline namespace: argocd annotations: docs.strudelline.net/origin: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/install-and-setup/tunnel-guide/local/local-management/configuration-file/ finalizers: - resources-finalizer.argocd.argoproj.io spec: project: default destination: server: "https://kubernetes.default.svc" namespace: cloudflare-tunnel syncPolicy: automated: prune: true selfHeal: true source: chart: cloudflare-tunnel repoURL: https://rlex.github.io/helm-charts targetRevision: 0.7.0 helm: values: |- extraEnv: - name: TUNNEL_TRANSPORT_PROTOCOL value: http2 cloudflared: tunnelSecret: cloudflare-tunnel-strudelline-credentials tunnel: 12dcd4b7-4987-4639-8bb3-0da0dfd1b1bc ingress: - hostname: plex.strudelline.net service: hello_world - hostname: media.strudelline.net service: hello_world #- hostname: webdav.strudelline.net # service: http://172.16.18.1:5005 - hostname: jenkins.strudelline.net service: http://jenkins.jenkins.svc.cluster.local:8080 - hostname: '*.strudelline.net' service: http://haproxy-ingress.haproxy-ingress.svc.cluster.local:81 # originRequest: # disableChunkedEncoding: true #- hostname: warden.strudelline.net # service: http://vaultwarden.vaultwarden.svc.cluster.local:80 - hostname: hello.strudelline.net service: hello_world #- hostname: minio.strudelline.net # service: http://172.16.18.1:53713 #- hostname: minio.strudelline.net # service: http://172.16.18.1:53713 #- hostname: git.strudelline.net # service: http://172.16.18.1:57924 #- hostname: minio-admin.strudelline.net # service: http://172.16.18.1:53714 #- service: http_status:404 - service: hello_world serviceMonitor: enabled: false