summary refs log tree commit diff
diff options
context:
space:
mode:
-rw-r--r--infra/kubernetes/https-cert/cert.yaml8
-rw-r--r--infra/kubernetes/primary-cluster.yaml11
2 files changed, 19 insertions, 0 deletions
diff --git a/infra/kubernetes/https-cert/cert.yaml b/infra/kubernetes/https-cert/cert.yaml
new file mode 100644
index 000000000000..c7a85275ae67
--- /dev/null
+++ b/infra/kubernetes/https-cert/cert.yaml
@@ -0,0 +1,8 @@
+---
+apiVersion: networking.gke.io/v1beta1
+kind: ManagedCertificate
+metadata:
+  name: {{ .domain | replace "." "-" }}
+spec:
+  domains:
+    - {{ .domain }}
diff --git a/infra/kubernetes/primary-cluster.yaml b/infra/kubernetes/primary-cluster.yaml
index c8a6423e341c..f043f92fa89b 100644
--- a/infra/kubernetes/primary-cluster.yaml
+++ b/infra/kubernetes/primary-cluster.yaml
@@ -3,6 +3,17 @@
 ---
 context: gke_tazjins-infrastructure_europe-north1_tazjin-cluster
 include:
+  # SSL certificates (provisioned by Google)
+  - name: tazj-in-cert
+    path: https-cert
+    values:
+      domain: tazj.in
+  - name: www-tazj-in-cert
+    path: https-cert
+    values:
+      domain: www.tazj.in
+
+  # Services
   - name: nixery
     values:
       port: 8080