Add HTTPS configuration with cert-manager

- cert-manager namespace - ClusterIssuer for Let's Encrypt (prod and staging) - HTTPS Ingress for ArgoCD, Gitea, and test-app - Automatic certificate management Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-04 05:13:41 +08:00
commit ef0d1af353
7 changed files with 172 additions and 0 deletions
--- a/manifests/06-ingress-test-app-tls.yaml
+++ b/manifests/06-ingress-test-app-tls.yaml
@@ -0,0 +1,25 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: test-app-tls
+  namespace: default
+  annotations:
+    traefik.ingress.kubernetes.io/router.entrypoints: websecure
+    traefik.ingress.kubernetes.io/router.tls: "true"
+    cert-manager.io/cluster-issuer: letsencrypt-prod
+spec:
+  tls:
+  - hosts:
+    - test.jpc.net3w.com
+    secretName: test-app-tls-cert
+  rules:
+  - host: test.jpc.net3w.com
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: test-app
+            port:
+              number: 80