Créer un service dédié
apiVersion: v1
kind: Service
metadata:
name: argocd-svc-http
namespace: argocd
spec:
selector:
app.kubernetes.io/instance: argocd
app.kubernetes.io/name: argocd-server
ports:
- port: 80
targetPort: 8080
protocol: TCP
type: ClusterIP
Le nom de l'instance peut changer. Sois argocd, argo-cd. A adapter ou meme à retirer
Créer l'ingress
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: argocd-ing
namespace: argocd
annotations:
alb.ingress.kubernetes.io/scheme: internet-facing
alb.ingress.kubernetes.io/target-type: ip
alb.ingress.kubernetes.io/listen-ports: '[{"HTTPS": 443}]'
alb.ingress.kubernetes.io/certificate-arn: arn:aws:acm:eu-west-3:xxxxx:certificate/xxxxxxxxxx
alb.ingress.kubernetes.io/ssl-policy: ELBSecurityPolicy-TLS-1-1-2017-01
alb.ingress.kubernetes.io/healthcheck-protocol: HTTP
argocd.argoproj.io/instance: argocd-url
alb.ingress.kubernetes.io/tags: env=preprod,project=xxx,version=06
alb.ingress.kubernetes.io/wafv2-acl-arn: >-
arn:aws:wafv2:eu-west-3:xxxxxx:regional/webacl/allow_incoming_from_xxxxxxxxx/xxxxxxxxxxx
spec:
rules:
- http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: argocd-svc-http
port:
number: 80
Modifier le déploiement
env:
- name: ARGOCD_SERVER_INSECURE
valueFrom:
configMapKeyRef:
name: argocd-cmd-params-cm
key: server.insecure
optional: true
Faire le CNAME