gitops/cilium: enable Gateway API and add HTTPRoute for ghost

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-17 11:55:49 +01:00
parent 0d97a796e9
commit 4b7ed6085b
3 changed files with 49 additions and 0 deletions
--- a/gitops/home-kubernetes/cilium/gateway.yaml
+++ b/gitops/home-kubernetes/cilium/gateway.yaml
@@ -0,0 +1,20 @@
 ---
 apiVersion: gateway.networking.k8s.io/v1
 kind: Gateway
 metadata:
  name: cilium-gateway
  namespace: kube-system
 spec:
  gatewayClassName: cilium
  listeners:
    - name: http
      protocol: HTTP
      port: 80
    - name: https
      protocol: HTTPS
      port: 443
      tls:
        mode: Terminate
        certificateRefs:
          - kind: Secret
            name: gateway-tls
--- a/gitops/home-kubernetes/cilium/helmrelelase_cilium.yaml
+++ b/gitops/home-kubernetes/cilium/helmrelelase_cilium.yaml
@@ -31,6 +31,8 @@ spec:
        clusterPoolIPv4PodCIDRList: "10.96.0.0/16"
    l2announcements:
      enabled: true
    gatewayAPI:
      enabled: true
    kubeProxyReplacement: true
    k8sServiceHost: 192.168.0.31  # or LB IP
    k8sServicePort: 6443
--- a/gitops/home-kubernetes/ghost-on-kubernetes/07-httproute.yaml
+++ b/gitops/home-kubernetes/ghost-on-kubernetes/07-httproute.yaml
@@ -0,0 +1,27 @@
 ---
 apiVersion: gateway.networking.k8s.io/v1
 kind: HTTPRoute
 metadata:
  name: ghost-on-kubernetes
  namespace: ghost-on-kubernetes
  labels:
    app: ghost-on-kubernetes
    app.kubernetes.io/name: ghost-on-kubernetes-httproute
    app.kubernetes.io/instance: ghost-on-kubernetes
    app.kubernetes.io/version: '6.0'
    app.kubernetes.io/component: httproute
    app.kubernetes.io/part-of: ghost-on-kubernetes
 spec:
  parentRefs:
    - name: cilium-gateway
      namespace: kube-system
  hostnames:
    - ghost.lab.home.hrajfrisbee.cz
  rules:
    - matches:
        - path:
            type: PathPrefix
            value: /
      backendRefs:
        - name: ghost-on-kubernetes-service
          port: 2368