diff --git a/base-kustomize/barbican/base/barbican-routes.yaml b/base-kustomize/barbican/base/barbican-routes.yaml new file mode 100644 index 00000000..d9bfed19 --- /dev/null +++ b/base-kustomize/barbican/base/barbican-routes.yaml @@ -0,0 +1,19 @@ +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: barbican-route + namespace: openstack +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "barbican.cluster.local" + - "barbican" + - "barbican.openstack" + - "barbican.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: barbican-api + port: 9311 diff --git a/base-kustomize/barbican/base/kustomization.yaml b/base-kustomize/barbican/base/kustomization.yaml index e8002296..62728a7f 100644 --- a/base-kustomize/barbican/base/kustomization.yaml +++ b/base-kustomize/barbican/base/kustomization.yaml @@ -3,3 +3,4 @@ resources: - barbican-rabbitmq-queue.yaml - all.yaml - hpa-barbican-api.yaml + - barbican-routes.yaml diff --git a/base-kustomize/cinder/base/cinder-routes.yaml b/base-kustomize/cinder/base/cinder-routes.yaml new file mode 100644 index 00000000..e50845f7 --- /dev/null +++ b/base-kustomize/cinder/base/cinder-routes.yaml @@ -0,0 +1,24 @@ +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: cinder-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: cinder +spec: + parentRefs: + - name: flex-gateway + sectionName: cinder-tls + namespace: nginx-gateway + hostnames: + - "cinder.cluster.local" + - "cinder" + - "cinder.openstack" + - "cinder.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: cinder-api + port: 8776 diff --git a/base-kustomize/cinder/base/kustomization.yaml b/base-kustomize/cinder/base/kustomization.yaml index 7489cc40..53197c7a 100644 --- a/base-kustomize/cinder/base/kustomization.yaml +++ b/base-kustomize/cinder/base/kustomization.yaml @@ -4,3 +4,4 @@ resources: - all.yaml - hpa-cinder-scheduler.yaml - hpa-cinder-api.yaml + - heat-routes.yaml diff --git a/base-kustomize/gateway/grafana-routes.yaml b/base-kustomize/gateway/grafana-routes.yaml index bff3976a..00e4838d 100644 --- a/base-kustomize/gateway/grafana-routes.yaml +++ b/base-kustomize/gateway/grafana-routes.yaml @@ -6,10 +6,13 @@ metadata: spec: parentRefs: - name: flex-gateway - sectionName: graf-https + sectionName: cluster-tls namespace: nginx-gateway hostnames: - - "grafana.sjc3.rackspacecloud.com" + - "grafana.cluster.local" + - "grafana" + - "grafana.grafana" + - "grafana.grafana.svc.cluster.local" rules: - backendRefs: - name: grafana diff --git a/base-kustomize/gateway/internal-gateway-api.yaml b/base-kustomize/gateway/internal-gateway-api.yaml new file mode 100644 index 00000000..e867bbab --- /dev/null +++ b/base-kustomize/gateway/internal-gateway-api.yaml @@ -0,0 +1,27 @@ +apiVersion: gateway.networking.k8s.io/v1 +kind: Gateway +metadata: + name: flex-gateway + namespace: nginx-gateway +spec: + gatewayClassName: nginx + listeners: + - name: cluster-http + port: 80 + protocol: HTTP + hostname: "*.cluster.local" + allowedRoutes: + namespaces: + from: All + - name: cluster-tls + port: 443 + protocol: HTTPS + hostname: "*.cluster.local" + allowedRoutes: + namespaces: + from: All + tls: + mode: Terminate + certificateRefs: + - kind: Secret + name: wildcard-cluster-tls-secret diff --git a/base-kustomize/glance/base/client-settings.yaml b/base-kustomize/glance/base/client-settings.yaml new file mode 100644 index 00000000..0d622883 --- /dev/null +++ b/base-kustomize/glance/base/client-settings.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: gateway.nginx.org/v1alpha1 +kind: ClientSettingsPolicy +metadata: + name: gateway-client-settings + namespace: nginx-gateway +spec: + targetRef: + group: gateway.networking.k8s.io + kind: Gateway + name: flex-gateway + body: + maxSize: "50g" # sizes without a unit are bytes. diff --git a/base-kustomize/glance/base/glance-routes.yaml b/base-kustomize/glance/base/glance-routes.yaml new file mode 100644 index 00000000..a7f0c5d6 --- /dev/null +++ b/base-kustomize/glance/base/glance-routes.yaml @@ -0,0 +1,23 @@ +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: glance-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: glance +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "glance.cluster.local" + - "glance" + - "glance.openstack" + - "glance.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: glance-api + port: 9292 diff --git a/base-kustomize/glance/base/kustomization.yaml b/base-kustomize/glance/base/kustomization.yaml index 69fce788..ca369db6 100644 --- a/base-kustomize/glance/base/kustomization.yaml +++ b/base-kustomize/glance/base/kustomization.yaml @@ -3,6 +3,8 @@ resources: - glance-rabbitmq-queue.yaml - all.yaml - hpa-glance-api.yaml + - glance-routes.yaml + - client-settings.yaml patches: - target: diff --git a/base-kustomize/heat/base/heat-routes.yaml b/base-kustomize/heat/base/heat-routes.yaml new file mode 100644 index 00000000..e7697231 --- /dev/null +++ b/base-kustomize/heat/base/heat-routes.yaml @@ -0,0 +1,48 @@ +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: cloudformation-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: cloudformation +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "cloudformation.cluster.local" + - "cloudformation" + - "cloudformation.openstack" + - "cloudformation.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: heat-cfn + port: 8000 +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: heat-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: heat +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "heat.cluster.local" + - "heat" + - "heat.openstack" + - "heat.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: heat-api + port: 8004 diff --git a/base-kustomize/heat/base/kustomization.yaml b/base-kustomize/heat/base/kustomization.yaml index 82aec430..16534499 100644 --- a/base-kustomize/heat/base/kustomization.yaml +++ b/base-kustomize/heat/base/kustomization.yaml @@ -5,3 +5,4 @@ resources: - hpa-heat-api.yaml - hpa-heat-cfn.yaml - hpa-heat-engine.yaml + - heat-routes.yaml diff --git a/base-kustomize/keystone/base/keystone-routes.yaml b/base-kustomize/keystone/base/keystone-routes.yaml new file mode 100644 index 00000000..f894cbc3 --- /dev/null +++ b/base-kustomize/keystone/base/keystone-routes.yaml @@ -0,0 +1,20 @@ +kind: HTTPRoute +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: keystone-gateway-route + namespace: openstack +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "keystone.cluster.local" + - "keystone" + - "keystone.openstack" + - "keystone.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: keystone-api + port: 5000 diff --git a/base-kustomize/keystone/base/kustomization.yaml b/base-kustomize/keystone/base/kustomization.yaml index 0105ae67..30838c7c 100644 --- a/base-kustomize/keystone/base/kustomization.yaml +++ b/base-kustomize/keystone/base/kustomization.yaml @@ -3,3 +3,4 @@ resources: - keystone-rabbitmq-queue.yaml - all.yaml - hpa-keystone-api.yaml + - keystone-routes.yaml diff --git a/base-kustomize/neutron/base/kustomization.yaml b/base-kustomize/neutron/base/kustomization.yaml index aa9cd85b..ccea29fd 100644 --- a/base-kustomize/neutron/base/kustomization.yaml +++ b/base-kustomize/neutron/base/kustomization.yaml @@ -3,6 +3,7 @@ resources: - neutron-rabbitmq-queue.yaml - all.yaml - hpa-neutron-server.yaml + - neutron-routes.yaml patches: - target: diff --git a/base-kustomize/neutron/base/neutron-routes.yaml b/base-kustomize/neutron/base/neutron-routes.yaml new file mode 100644 index 00000000..41b642e2 --- /dev/null +++ b/base-kustomize/neutron/base/neutron-routes.yaml @@ -0,0 +1,23 @@ +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: neutron-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: neutron +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "neutron.cluster.local" + - "neutron" + - "neutron.openstack" + - "neutron.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: neutron-server + port: 9696 diff --git a/base-kustomize/octavia/base/kustomization.yaml b/base-kustomize/octavia/base/kustomization.yaml index cb325669..b4f6c326 100644 --- a/base-kustomize/octavia/base/kustomization.yaml +++ b/base-kustomize/octavia/base/kustomization.yaml @@ -4,6 +4,7 @@ resources: - all.yaml - hpa-octavia-api.yaml - hpa-octavia-worker.yaml + - octavia-routes.yaml # To run the OVN driver, the octavia-api container must have an agent container within the same pod. patches: diff --git a/base-kustomize/octavia/base/octavia-routes.yaml b/base-kustomize/octavia/base/octavia-routes.yaml new file mode 100644 index 00000000..aff241ee --- /dev/null +++ b/base-kustomize/octavia/base/octavia-routes.yaml @@ -0,0 +1,24 @@ +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: octavia-api + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: octavia +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "octavia.cluster.local" + - "octavia" + - "octavia.openstack" + - "octavia.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: octavia-api + port: 9876 diff --git a/base-kustomize/placement/base/kustomization.yaml b/base-kustomize/placement/base/kustomization.yaml index 6c7d855a..5f0a6efd 100644 --- a/base-kustomize/placement/base/kustomization.yaml +++ b/base-kustomize/placement/base/kustomization.yaml @@ -2,3 +2,4 @@ resources: - placement-mariadb-database.yaml - all.yaml - hpa-placement-api.yaml + - placement-nova-routes.yaml diff --git a/base-kustomize/placement/base/placement-nova-routes.yaml b/base-kustomize/placement/base/placement-nova-routes.yaml new file mode 100644 index 00000000..fb985730 --- /dev/null +++ b/base-kustomize/placement/base/placement-nova-routes.yaml @@ -0,0 +1,96 @@ +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: placement-api + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: placement +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "placement.cluster.local" + - "placement" + - "placement.openstack" + - "placement.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: placement-api + port: 8778 +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: metadata-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: nova-metadata +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "metadata.cluster.local" + - "metadata" + - "metadata.openstack" + - "metadata.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: nova-metadata + port: 8775 +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: nova-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: nova +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "nova.cluster.local" + - "nova" + - "nova.openstack" + - "nova.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: nova-api + port: 8774 +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: novnc-gateway-route + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: novnc +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "novnc.cluster.local" + - "novnc" + - "novnc.openstack" + - "novnc.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: nova-novncproxy + port: 6080 diff --git a/base-kustomize/skyline/base/kustomization.yaml b/base-kustomize/skyline/base/kustomization.yaml index adbc440e..b98ec8f4 100644 --- a/base-kustomize/skyline/base/kustomization.yaml +++ b/base-kustomize/skyline/base/kustomization.yaml @@ -6,3 +6,4 @@ resources: - ingress-apiserver.yaml - hpa-skyline-apiserver.yaml - pdb-apiserver.yaml + - skyline-routes.yaml diff --git a/base-kustomize/skyline/base/skyline-routes.yaml b/base-kustomize/skyline/base/skyline-routes.yaml new file mode 100644 index 00000000..65ca43ef --- /dev/null +++ b/base-kustomize/skyline/base/skyline-routes.yaml @@ -0,0 +1,24 @@ +--- +apiVersion: gateway.networking.k8s.io/v1 +kind: HTTPRoute +metadata: + name: skyline-api + namespace: openstack + labels: + application: gateway-api + service: HTTPRoute + route: skyline +spec: + parentRefs: + - name: flex-gateway + sectionName: cluster-tls + namespace: nginx-gateway + hostnames: + - "skyline.cluster.local" + - "skyline" + - "skyline.openstack" + - "skyline.openstack.svc.cluster.local" + rules: + - backendRefs: + - name: skyline-apiserver + port: 9999