Skip to content

Instantly share code, notes, and snippets.

@jfblaine

jfblaine/route types template tested with 4.3.13

Last active May 4, 2020 19:32
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save jfblaine/f5283219f6f07d82c9272025d697d33b to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save jfblaine/f5283219f6f07d82c9272025d697d33b to your computer and use it in GitHub Desktop.
Download ZIP
Raw
route types template tested with 4.3.13
apiVersion: v1
kind: Template
labels:
template: "httpd-cert-tests"
metadata:
name: httpd-cert-tests
annotations:
description: "Demo of secret signing for certs"
tags: "httpd"
objects:
- apiVersion: v1
kind: Service
metadata:
annotations:
service.beta.openshift.io/serving-cert-secret-name: hello
labels:
app: hello
name: hello
namespace: "${NAMESPACE}"
spec:
ports:
- name: 8080-tcp
port: 8080
protocol: TCP
targetPort: 8080
- name: 8443-tcp
port: 8443
protocol: TCP
targetPort: 8443
selector:
app: hello
sessionAffinity: None
type: ClusterIP
- apiVersion: v1
kind: Service
metadata:
labels:
app: hello
name: hello-nodeport
namespace: "${NAMESPACE}"
spec:
type: NodePort
selector:
app: hello
ports:
- port: 8443
targetPort: 8443
- apiVersion: v1
kind: Service
metadata:
name: hello-loadbalancer
namespace: "${NAMESPACE}"
spec:
selector:
app: hello
ports:
- protocol: TCP
port: 443
targetPort: 8443
type: LoadBalancer
- apiVersion: apps/v1
kind: Deployment
metadata:
annotations:
deployment.kubernetes.io/revision: "1"
labels:
app: hello
name: hello
namespace: "${NAMESPACE}"
spec:
progressDeadlineSeconds: 600
replicas: 1
revisionHistoryLimit: 0
selector:
matchLabels:
app: hello
strategy:
rollingUpdate:
maxSurge: 25%
maxUnavailable: 25%
type: RollingUpdate
template:
metadata:
labels:
app: hello
spec:
containers:
- image: image-registry.openshift-image-registry.svc:5000/openshift/httpd@sha256:950af0b156f39634673132241dc3dacb063c12e2cba0abf0d7406c04036aa7f9
imagePullPolicy: IfNotPresent
name: httpd
resources:
limits:
cpu: 200m
memory: 200Mi
requests:
cpu: 100m
memory: 100Mi
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- name: hello-volume
mountPath: /etc/httpd/tls
readOnly: true
dnsPolicy: ClusterFirst
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
terminationGracePeriodSeconds: 30
volumes:
- name: hello-volume
secret:
secretName: hello
items:
- key: tls.key
path: localhost.key
- key: tls.crt
path: localhost.crt
- apiVersion: route.openshift.io/v1
kind: Route
metadata:
labels:
app: hello
name: hello-http
namespace: "${NAMESPACE}"
spec:
host: hello-http.${WILDCARD_DNS}
port:
targetPort: 8080
to:
kind: Service
name: hello
weight: 100
wildcardPolicy: None
- apiVersion: route.openshift.io/v1
kind: Route
metadata:
labels:
app: hello
name: hello-edge
namespace: "${NAMESPACE}"
spec:
host: hello-edge.${WILDCARD_DNS}
port:
targetPort: 8080
tls:
termination: edge
insecureEdgeTerminationPolicy: Redirect
to:
kind: Service
name: hello
weight: 100
wildcardPolicy: None
- apiVersion: route.openshift.io/v1
kind: Route
metadata:
labels:
app: hello
name: hello-reencrypt
namespace: "${NAMESPACE}"
spec:
host: hello-reencrypt.${WILDCARD_DNS}
port:
targetPort: 8443
tls:
termination: reencrypt
insecureEdgeTerminationPolicy: Redirect
to:
kind: Service
name: hello
weight: 100
wildcardPolicy: None
- apiVersion: route.openshift.io/v1
kind: Route
metadata:
labels:
app: hello
name: hello-passthrough
namespace: "${NAMESPACE}"
spec:
host: hello-passthrough.${WILDCARD_DNS}
port:
targetPort: 8443
tls:
termination: passthrough
insecureEdgeTerminationPolicy: Redirect
to:
kind: Service
name: hello
weight: 100
wildcardPolicy: None
parameters:
- name: WILDCARD_DNS
displayName: Wildcard DNS
description: The wildcard dns entry for routes on this cluster
required: true
- name: NAMESPACE
displayName: Target Namespace
description: The target namespace for object creation
required: true
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment