updated bootstrapping procedure with more sane defaults

2025-09-03 13:20:09 +02:00
parent e98d7330f1
commit b54b6b0f60
6 changed files with 34 additions and 34 deletions
--- a/infrastructure/traefik-system/configmap.yaml
+++ b/infrastructure/traefik-system/configmap.yaml
@@ -5,15 +5,15 @@ metadata:
 data:
  traefik.toml: |
    [ping]
-    
+
    [global]
      checkNewVersion = false
      # renovate does that
      sendAnonymousUsage = false
-    
+
    [log]
      level = "INFO"
-    
+
    [accessLog]
      [accessLog.fields]
        defaultMode = "keep"
@@ -41,17 +41,17 @@ data:
      dashboard = true
      insecure = true
      debug = false
- 
+
    [providers]
      [providers.kubernetesCRD]
        allowCrossNamespace = true
      [providers.kubernetesIngress]
        allowExternalNameServices = true
-        ingressClass = "traefik"    
+        ingressClass = "traefik"

    [serversTransport]
      insecureSkipVerify = true
- 
+
    [entryPoints]
      [entryPoints.web]
        address = ":8000"
@@ -66,13 +66,13 @@ data:
        [entryPoints.websecure.forwardedHeaders]
          insecure = true
          # forward ip headers no matter where they come from
-      
+
      [entryPoints.metrics]
        address = ":9100"
-      
+
      [entryPoints.traefik]
-        address = ":9000"
-      
+        address = ":8080"
+
      [entryPoints.dnsovertls]
        address = ":8853"
        # route dns over https to other pods but provide own certificate
--- a/infrastructure/traefik-system/values.yaml
+++ b/infrastructure/traefik-system/values.yaml
@@ -23,8 +23,7 @@ ingressClass:
  # true is not unit-testable yet, pending https://github.com/rancher/helm-unittest/pull/12
  enabled: true
  isDefaultClass: true
-  # Use to force a networking.k8s.io API Version for certain CI/CD applications. E.g. "v1beta1"
-  fallbackApiVersion: ""
+

 # Activate Pilot integration
 pilot:
@@ -67,10 +66,11 @@ providers:
  kubernetesIngress:
    enabled: true
    allowExternalNameServices: true
-    ingressClass: traefik
+    # Ingresses missing the annotation, having an empty value, or the value traefik are processed by default.
+    # ingressClass: traefik
    # labelSelector: environment=production,method=traefik

-  
+

 # Additional volumeMounts to add to the Traefik container
 additionalVolumeMounts: