feat: add argocd as an application so it manages itself. Run as plain http since traefik manages TLS

This commit is contained in:
jad0s 2026-05-07 13:38:38 +02:00
parent 596cb1f9e2
commit 9d0d908f1a
3 changed files with 50 additions and 0 deletions

18
apps/argocd.yaml Normal file
View file

@ -0,0 +1,18 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: argocd-config
namespace: argocd
spec:
project: default
source:
repoURL: http://forgejo.forgejo.svc.cluster.local:3000/jad0s/gitops.git
targetRevision: HEAD
path: manifests/argocd
destination:
server: https://kubernetes.default.svc
namespace: argocd
syncPolicy:
automated:
prune: true
selfHeal: true

View file

@ -0,0 +1,7 @@
apiVersion: v1
kind: ConfigMap
metadata:
name: argocd-cmd-params-cm
namespace: argocd
data:
server.insecure: "true"

View file

@ -0,0 +1,25 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: argocd
namespace: argocd
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
traefik.ingress.kubernetes.io/router.entrypoints: websecure
spec:
ingressClassName: traefik
rules:
- host: argocd.libretalk.eu
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: argocd-server
port:
number: 80
tls:
- hosts:
- argocd.libretalk.eu
secretName: argocd-tls