kevisual/datapod-helm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
熊潇
2026-01-14 12:37:31 +08:00
commit 01d1a49a59
22 changed files with 1037 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

54
pocketbase/templates/ingress.yaml Normal file
View File

@@ -0,0 +1,54 @@
{{- /*
Generate IngressRoute for Traefik for each PocketBase instance
*/ -}}
{{- $ingress := .Values.ingress }}
{{- range .Values.instances }}
---
apiVersion: traefik.io/v1alpha1
kind: IngressRoute
metadata:
name: pocketbase-{{ .id }}
labels:
app: pocketbase
instance: {{ .id }}
{{- include "pocketbase.labels" $ | nindent 4 }}
{{- with $ingress.annotations }}
annotations:
{{- toYaml . | nindent 4 }}
{{- end }}
spec:
entryPoints:
- web
- websecure
routes:
- match: Host(`{{ .domain }}`)
kind: Rule
services:
- name: pocketbase-{{ .id }}
port: 80
middlewares:
- name: pocketbase-{{ .id }}-headers
namespace: default
---
{{- /*
Middleware for security headers
*/ -}}
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
name: pocketbase-{{ .id }}-headers
labels:
app: pocketbase
instance: {{ .id }}
{{- include "pocketbase.labels" $ | nindent 4 }}
spec:
headers:
stsSeconds: 31536000
stsIncludeSubdomains: true
stsPreload: true
forceSTSHeader: true
contentTypeNosniff: true
browserXssFilter: true
referrerPolicy: "strict-origin-when-cross-origin"
customFrameOptionsValue: "SAMEORIGIN"
{{- end }}