d-bis/Sankofa
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7cd7022f6e0d6ff4232c47cbf4c19cfbc704e102
Sankofa/cloudflare/tunnel-configs/control-plane.yaml
defiQUG 9daf1fd378 Apply Composer changes: comprehensive API updates, migrations, middleware, and infrastructure improvements 
- Add comprehensive database migrations (001-024) for schema evolution
- Enhance API schema with expanded type definitions and resolvers
- Add new middleware: audit logging, rate limiting, MFA enforcement, security, tenant auth
- Implement new services: AI optimization, billing, blockchain, compliance, marketplace
- Add adapter layer for cloud integrations (Cloudflare, Kubernetes, Proxmox, storage)
- Update Crossplane provider with enhanced VM management capabilities
- Add comprehensive test suite for API endpoints and services
- Update frontend components with improved GraphQL subscriptions and real-time updates
- Enhance security configurations and headers (CSP, CORS, etc.)
- Update documentation and configuration files
- Add new CI/CD workflows and validation scripts
- Implement design system improvements and UI enhancements
2025-12-12 18:01:35 -08:00

78 lines
1.9 KiB
YAML
Raw Blame History

# Cloudflare Tunnel Configuration for Control Plane
# This tunnel connects the Kubernetes control plane to Cloudflare
tunnel: control-plane-tunnel
credentials-file: /etc/cloudflared/control-plane-tunnel.json
ingress:
# Portal
- hostname: portal.sankofa.nexus
service: http://portal.portal.svc.cluster.local:80
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
tcpKeepAlive: 30s
keepAliveConnections: 100
keepAliveTimeout: 90s
# Rancher
- hostname: rancher.sankofa.nexus
service: http://rancher.rancher-system.svc.cluster.local:80
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
# ArgoCD
- hostname: argocd.sankofa.nexus
service: http://argocd-server.argocd.svc.cluster.local:80
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
# Grafana
- hostname: grafana.sankofa.nexus
service: http://kube-prometheus-stack-grafana.monitoring.svc.cluster.local:80
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
# Vault
- hostname: vault.sankofa.nexus
service: http://vault.vault.svc.cluster.local:8200
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
# Keycloak
- hostname: keycloak.sankofa.nexus
service: http://keycloak.keycloak.svc.cluster.local:8080
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
# Kubernetes API (restricted)
- hostname: k8s-api.sankofa.nexus
service: https://kubernetes.default.svc.cluster.local:443
originRequest:
noHappyEyeballs: true
connectTimeout: 30s
tls:
skipVerify: false
# Catch-all rule (must be last)
- service: http_status:404
# Logging
loglevel: info
logfile: /var/log/cloudflared/control-plane-tunnel.log
# Metrics
metrics: 0.0.0.0:9090
# Health check
health-probe:
enabled: true
path: /health
port: 8080
Reference in New Issue View Git Blame Copy Permalink