add tracing and basic auth

2020-05-15 13:37:42 -04:00
parent e4ec853e52
commit e46770616e
9 changed files with 34 additions and 2 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -0,0 +1 @@
 users
--- a/README.md
+++ b/README.md
@@ -35,4 +35,11 @@ spec:
 export USERNAME=
 export TOKEN=
-kubectl create secret generic namedotcom -n kube-system --from-literal=NAMECOM_USERNAME=$USERNAME --from-literal=NAMECOM_API_TOKEN=$TOKEN --from-literal=NAMECOM_SERVER=api.name.com
+kubectl create secret generic namedotcom -n kube-system --from-literal=NAMECOM_USERNAME=$USERNAME --from-literal=NAMECOM_API_TOKEN=$TOKEN --from-literal=NAMECOM_SERVER=api.name.com
 ## Create a basic auth secret
 ```bash
 htpasswd -nbB user pass >> users
 kubectl create secret generic authsecret --from-file=users
 ```
--- a/external/deploy.yaml
+++ b/external/deploy.yaml
@@ -33,6 +33,12 @@ spec:
            - --certificatesresolvers.myresolver.acme.tlschallenge
            - --certificatesresolvers.myresolver.acme.email=ducoterra@icloud.com
            - --certificatesresolvers.myresolver.acme.storage=/acme/acme.json
            - --tracing=true
            - --tracing.serviceName=traefik-external-controller
            - --tracing.spanNameLimit=0
            - --tracing.zipkin=true
            - --tracing.zipkin.httpEndpoint=http://zipkin:9411/api/v2/spans
            - --tracing.zipkin.sampleRate=1.0
          volumeMounts:
          - mountPath: /acme
            name: traefik-external-acme
--- a/external/ingress.yaml
+++ b/external/ingress.yaml
@@ -18,6 +18,8 @@ spec:
    services:
    - name: traefik-external-admin
      port: 8080
    middlewares:
      - name: basic-auth
 ---
--- a/internal/deploy.yaml
+++ b/internal/deploy.yaml
@@ -24,7 +24,7 @@ spec:
                name: namedotcom
          args:
            - --providers.kubernetescrd.ingressclass=traefik-internal
-            - --log.level=ERROR
+            - --log.level=DEBUG
            - --api
            - --api.insecure
            - --entrypoints.web.address=:80
@@ -38,6 +38,12 @@ spec:
            - --certificatesresolvers.myresolver.acme.email=ducoterra@icloud.com
            - --certificatesresolvers.myresolver.acme.storage=/acme/acme.json
            - --certificatesresolvers.myresolver.acme.dnschallenge.resolvers=8.8.8.8:53
            - --tracing=true
            - --tracing.serviceName=traefik-internal-controller
            - --tracing.spanNameLimit=0
            - --tracing.zipkin=true
            - --tracing.zipkin.httpEndpoint=http://zipkin:9411/api/v2/spans
            - --tracing.zipkin.sampleRate=1.0
          volumeMounts:
          - mountPath: /acme
            name: traefik-internal-acme
--- a/internal/ingress.yaml
+++ b/internal/ingress.yaml
@@ -18,6 +18,8 @@ spec:
    services:
    - name: traefik-internal-admin
      port: 8080
    middlewares:
      - name: basic-auth
 ---
--- a/middleware/basicauth.yaml
+++ b/middleware/basicauth.yaml
@@ -0,0 +1,8 @@
 apiVersion: traefik.containo.us/v1alpha1
 kind: Middleware
 metadata:
  name: basic-auth
 spec:
  basicAuth:
    secret: authsecret
    removeHeader: true
--- a/middleware/redirectscheme.yaml
+++ b/middleware/redirectscheme.yaml
--- a/middleware/stricttransport.yaml
+++ b/middleware/stricttransport.yaml