added middleware whitelist for .internal services

2026-01-17 01:32:44 +01:00
parent 0549661c90
commit ad60c87f62
4 changed files with 48 additions and 0 deletions
--- a/infrastructure/traefik-middleware-app.yaml
+++ b/infrastructure/traefik-middleware-app.yaml
@@ -0,0 +1,26 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: traefik-middleware-ipwhitelist
+  namespace: argocd
+  annotations:
+    argocd.argoproj.io/sync-wave: "0"  # Nach Traefik, aber vor Apps
+spec:
+  project: default
+  source:
+    repoURL: https://git.cloud-infra.prod.openmailserver.de/stabify/gitops.git
+    targetRevision: HEAD
+    path: infrastructure
+    directory:
+      recurse: false
+      include: traefik-middleware-ipwhitelist.yaml
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: traefik-system
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true
+    syncOptions:
+      - CreateNamespace=true
+      - ServerSideApply=true