From c8a6d8f43370c2c11a74287f95a0ad0ce85387ef Mon Sep 17 00:00:00 2001 From: sova-ci Date: Tue, 9 Jun 2026 16:37:31 +0300 Subject: [PATCH] fix(ingress): restore TLS for app ingresses on test contour --- apps/adminpanel/templates/all.yaml | 11 +++++++++++ apps/adminpanel/values-test.yaml | 4 ++++ apps/backend/templates/all.yaml | 11 +++++++++++ apps/backend/values-test.yaml | 4 ++++ apps/cabinet/templates/all.yaml | 11 +++++++++++ apps/cabinet/values-test.yaml | 4 ++++ apps/docs/templates/all.yaml | 11 +++++++++++ apps/docs/values-test.yaml | 4 ++++ 8 files changed, 60 insertions(+) diff --git a/apps/adminpanel/templates/all.yaml b/apps/adminpanel/templates/all.yaml index aebee9e..0263d72 100644 --- a/apps/adminpanel/templates/all.yaml +++ b/apps/adminpanel/templates/all.yaml @@ -77,8 +77,19 @@ kind: Ingress metadata: name: adminpanel namespace: {{ .Values.namespace }} + {{- if .Values.ingress.tls.enabled }} + annotations: + cert-manager.io/cluster-issuer: {{ .Values.ingress.tls.clusterIssuer | quote }} + nginx.ingress.kubernetes.io/ssl-redirect: "true" + {{- end }} spec: ingressClassName: {{ .Values.ingress.className }} + {{- if .Values.ingress.tls.enabled }} + tls: + - hosts: + - {{ .Values.ingress.host }} + secretName: {{ .Values.ingress.tls.secretName }} + {{- end }} rules: - host: {{ .Values.ingress.host }} http: diff --git a/apps/adminpanel/values-test.yaml b/apps/adminpanel/values-test.yaml index d9b2b0d..c577d36 100644 --- a/apps/adminpanel/values-test.yaml +++ b/apps/adminpanel/values-test.yaml @@ -1,5 +1,9 @@ ingress: host: adm.dev.sovamed.ru + tls: + enabled: true + clusterIssuer: letsencrypt-prod + secretName: adminpanel-tls env: API_BASE_URL: https://api.dev.sovamed.ru image: diff --git a/apps/backend/templates/all.yaml b/apps/backend/templates/all.yaml index 38dfb3a..81fd9c3 100644 --- a/apps/backend/templates/all.yaml +++ b/apps/backend/templates/all.yaml @@ -193,8 +193,19 @@ kind: Ingress metadata: name: backend namespace: {{ .Values.namespace }} + {{- if .Values.ingress.tls.enabled }} + annotations: + cert-manager.io/cluster-issuer: {{ .Values.ingress.tls.clusterIssuer | quote }} + nginx.ingress.kubernetes.io/ssl-redirect: "true" + {{- end }} spec: ingressClassName: {{ .Values.ingress.className }} + {{- if .Values.ingress.tls.enabled }} + tls: + - hosts: + - {{ .Values.ingress.host }} + secretName: {{ .Values.ingress.tls.secretName }} + {{- end }} rules: - host: {{ .Values.ingress.host }} http: diff --git a/apps/backend/values-test.yaml b/apps/backend/values-test.yaml index 96d41b6..62d9a1c 100644 --- a/apps/backend/values-test.yaml +++ b/apps/backend/values-test.yaml @@ -1,5 +1,9 @@ ingress: host: api.dev.sovamed.ru + tls: + enabled: true + clusterIssuer: letsencrypt-prod + secretName: backend-tls image: tag: backend-v1.0.12-test pullPolicy: IfNotPresent diff --git a/apps/cabinet/templates/all.yaml b/apps/cabinet/templates/all.yaml index 9323a7f..ffad6ea 100644 --- a/apps/cabinet/templates/all.yaml +++ b/apps/cabinet/templates/all.yaml @@ -177,8 +177,19 @@ kind: Ingress metadata: name: cabinet namespace: {{ .Values.namespace }} + {{- if .Values.ingress.tls.enabled }} + annotations: + cert-manager.io/cluster-issuer: {{ .Values.ingress.tls.clusterIssuer | quote }} + nginx.ingress.kubernetes.io/ssl-redirect: "true" + {{- end }} spec: ingressClassName: {{ .Values.ingress.className }} + {{- if .Values.ingress.tls.enabled }} + tls: + - hosts: + - {{ .Values.ingress.host }} + secretName: {{ .Values.ingress.tls.secretName }} + {{- end }} rules: - host: {{ .Values.ingress.host }} http: diff --git a/apps/cabinet/values-test.yaml b/apps/cabinet/values-test.yaml index a33c27d..53d71ce 100644 --- a/apps/cabinet/values-test.yaml +++ b/apps/cabinet/values-test.yaml @@ -1,5 +1,9 @@ ingress: host: cabinet.dev.sovamed.ru + tls: + enabled: true + clusterIssuer: letsencrypt-prod + secretName: cabinet-tls image: tag: cabinet-v1.0.12-test pullPolicy: IfNotPresent diff --git a/apps/docs/templates/all.yaml b/apps/docs/templates/all.yaml index 8a50891..baf3ca7 100644 --- a/apps/docs/templates/all.yaml +++ b/apps/docs/templates/all.yaml @@ -47,8 +47,19 @@ kind: Ingress metadata: name: docs namespace: {{ .Values.namespace }} + {{- if .Values.ingress.tls.enabled }} + annotations: + cert-manager.io/cluster-issuer: {{ .Values.ingress.tls.clusterIssuer | quote }} + nginx.ingress.kubernetes.io/ssl-redirect: "true" + {{- end }} spec: ingressClassName: {{ .Values.ingress.className }} + {{- if .Values.ingress.tls.enabled }} + tls: + - hosts: + - {{ .Values.ingress.host }} + secretName: {{ .Values.ingress.tls.secretName }} + {{- end }} rules: - host: {{ .Values.ingress.host }} http: diff --git a/apps/docs/values-test.yaml b/apps/docs/values-test.yaml index 74a4061..981b0a8 100644 --- a/apps/docs/values-test.yaml +++ b/apps/docs/values-test.yaml @@ -1,5 +1,9 @@ ingress: host: docs.dev.sovamed.ru + tls: + enabled: true + clusterIssuer: letsencrypt-prod + secretName: docs-tls image: tag: docs-v1.0.12-test pullPolicy: IfNotPresent