diff --git a/Keycloak/install-keycloak.sh b/Keycloak/install-keycloak.sh index 41ef70a90f1164021c264c908c6a593271b49a1e..b36ad7ee8334a7314e5fd0546bfc345b1a5c49b7 100755 --- a/Keycloak/install-keycloak.sh +++ b/Keycloak/install-keycloak.sh @@ -2,7 +2,7 @@ # if [ -z "$2" ]; then echo "Error : Missing FQN for Ingress-Host parameter or namespace " - echo "Sample: $0 kube-master-h1.informatik.fh-nuernberg.de testing" + echo "Sample: $0 kube-master-h1.informatik.fh-nuernberg.de myoidc-app-ns" exit 1 fi INGRESS_HOST=$1 @@ -36,14 +36,14 @@ kubectl -n ${NAME_SPACE} describe secret ${TLS_CERT} cat ../ir-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > ir-keycloak.yaml cat ../deploy-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > deploy-keycloak.yaml - kubectl -n ${NAME_SPACE} apply -f deploy-keycloak.yaml kubectl -n ${NAME_SPACE} apply -f ir-keycloak.yaml kubectl -n ${NAME_SPACE} describe ingressroute ingressroute-oidc-app kubectl -n ${NAME_SPACE} get all sleep 5 -echo "Attention: curl script below may fail as it takes some time until keycloak instance is ready just - rerun it should work for http and https ! " +echo "Attention: curl scripts below may fail as it takes some time until keycloak REBAC realm gets imported ! " +echo " ---> just - rerun scripts / should work for both http and https ! " echo "$ curl -v --insecure https://${INGRESS_HOST}/auth/" echo "$ curl -v http://${INGRESS_HOST}/auth/" diff --git a/Traefik/IngressRoute/kube-master/ingressRoute_nginx.yaml b/Traefik/IngressRoute/kube-master/ingressRoute_nginx.yaml new file mode 100644 index 0000000000000000000000000000000000000000..d147fcdc332ae73374cfbb3cd7b6366260aa288d --- /dev/null +++ b/Traefik/IngressRoute/kube-master/ingressRoute_nginx.yaml @@ -0,0 +1,34 @@ +apiVersion: traefik.containo.us/v1alpha1 +kind: Middleware +metadata: + name: nginx-strip-path-prefix +spec: + stripPrefix: + prefixes: + - /nginx-green + - /nginx-blue +--- +apiVersion: traefik.containo.us/v1alpha1 +kind: IngressRoute +metadata: + name: ingressroute-nginx +spec: + entryPoints: + - websecure + routes: + - match: Host(`kube-master.informatik.fh-nuernberg.de`) && Path(`/nginx-green`) + kind: Rule + middlewares: + - name: nginx-strip-path-prefix + services: + - name: nginx-service-green + port: 8080 + - match: Host(`dev-storage.informatik.fh-nuernberg.de`) && Path(`/nginx-blue`) + kind: Rule + middlewares: + - name: nginx-strip-path-prefix + services: + - name: nginx-service-blue + port: 8080 + + diff --git a/Traefik/IngressRoute/kube-master/ingressRoute_whoami.yaml b/Traefik/IngressRoute/kube-master/ingressRoute_whoami.yaml new file mode 100644 index 0000000000000000000000000000000000000000..118fc45a733d27ece79c7f5eeb081e8d6297615a --- /dev/null +++ b/Traefik/IngressRoute/kube-master/ingressRoute_whoami.yaml @@ -0,0 +1,14 @@ +apiVersion: traefik.containo.us/v1alpha1 +kind: IngressRoute +metadata: + name: ingressroute-who-svc +spec: + entryPoints: + - websecure + routes: + - match: Host(`kube-master.informatik.fh-nuernberg.de`) && Path(`/who`) + kind: Rule + services: + - name: whoami-svc + port: 80 +