--- #_PHPADMIN________ apiVersion: apps/v1 kind: Deployment metadata: name: phpldapadmin labels: app: phpldapadmin spec: replicas: 1 selector: matchLabels: app: phpldapadmin template: metadata: labels: app: phpldapadmin spec: containers: - env: - name: PHPLDAPADMIN_HTTPS value: "false" - name: PHPLDAPADMIN_LDAP_HOSTS value: ldap://openldap:389 image: osixia/phpldapadmin name: phpldapadmin ports: - containerPort: 80 name: http restartPolicy: Always --- apiVersion: v1 kind: Service metadata: name: phpldapadmin spec: ports: - port: 80 targetPort: 80 name: http selector: app: phpldapadmin --- apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: phpldapadmin annotations: kubernetes.io/ingress.allow-http: "false" nginx.ingress.kubernetes.io/force-ssl-redirect: "true" nginx.ingress.kubernetes.io/auth-method: GET nginx.ingress.kubernetes.io/auth-url: http://authelia.{{ .Release.Namespace }}.svc.cluster.local:9091/api/verify nginx.ingress.kubernetes.io/auth-signin: https://auth.{{ .Values.homey.url }}?rm=$request_method nginx.ingress.kubernetes.io/auth-response-headers: Remote-User,Remote-Name,Remote-Groups,Remote-Email nginx.ingress.kubernetes.io/auth-snippet: | proxy_set_header X-Forwarded-Method $request_method; auth_request_set $user $upstream_http_remote_user; auth_request_set $groups $upstream_http_remote_groups; auth_request_set $name $upstream_http_remote_name; auth_request_set $email $upstream_http_remote_email; proxy_set_header X-Webauth-User $user; proxy_set_header X-Webauth-Fullname $name; proxy_set_header X-Webauth-Email $email; spec: ingressClassName: {{ .Values.homey.ingress_class }} tls: - hosts: - ldapadmin.{{ .Values.homey.url }} secretName: {{ .Values.homey.certname }} rules: - host: ldapadmin.{{ .Values.homey.url }} http: paths: - path: / pathType: Prefix backend: service: name: phpldapadmin port: number: 80