add option to specify which ingresses are protected and also expose list of paths to allow [ci skip]

2023-11-03 23:27:12 +00:00 · 2023-11-03 23:27:12 +00:00 · 3f809e946a
commit 3f809e946a
parent 255eb1e2db
3 changed files with 38 additions and 9 deletions
--- a/modules/kubernetes/reverse_proxy/main.tf
+++ b/modules/kubernetes/reverse_proxy/main.tf
@ -35,6 +35,18 @@ module "nas" {
  backend_protocol = "HTTPS"
 }

+# https://files.viktorbarzin.me/
+module "nas-files" {
+  source           = "./factory"
+  name             = "files"
+  external_name    = "nas.viktorbarzin.lan"
+  port             = 5001
+  tls_secret_name  = var.tls_secret_name
+  backend_protocol = "HTTPS"
+  protected        = false # allow anyone to download files
+  ingress_path     = ["/sharing", "/scripts", "/webman", "/wfmlogindialog.js"]
+}
+
 # https://idrac.viktorbarzin.me/
 module "idrac" {
  source           = "./factory"