@drunk-pulumi/azure 0.0.19

package/KubeX/Deployment/index.js

@@ -0,0 +1,306 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.virtualHostConfig = exports.defaultResources = void 0;
+const k8s = require("@pulumi/kubernetes");
+const kx = require("../kx");
+const Ingress_1 = require("../Ingress");
+const pulumi_1 = require("@pulumi/pulumi");
+const Helpers_1 = require("../../Common/Helpers");
+const CertHelper_1 = require("../CertHelper");
+const PodAutoscaler_1 = require("./PodAutoscaler");
+const ConfigSecret_1 = require("../ConfigSecret");
+exports.defaultResources = {
+    limits: { memory: '0.5Gi', cpu: '500m' },
+    requests: { memory: '10Mi', cpu: '1m' },
+};
+exports.virtualHostConfig = {
+    nodeSelector: {
+        'kubernetes.io/role': 'agent',
+        'beta.kubernetes.io/os': 'linux',
+        type: 'virtual-kubelet',
+    },
+    tolerations: [
+        {
+            effect: 'NoSchedule',
+            key: 'virtual-kubelet.io/provider',
+            value: 'azure',
+        },
+    ],
+};
+const buildPod = ({ name, envFrom, podConfig, useVirtualHost, restartPolicy, args, }) => {
+    //console.log('buildPod', podConfig);
+    if (useVirtualHost) {
+        podConfig.nodeSelector = exports.virtualHostConfig.nodeSelector;
+        podConfig.tolerations = exports.virtualHostConfig.tolerations;
+        if (!podConfig.resources)
+            podConfig.resources = false;
+    }
+    //else if (!podConfig.nodeSelector) podConfig.nodeSelector = { app: name };
+    const resources = podConfig.resources === false
+        ? undefined
+        : podConfig.resources || exports.defaultResources;
+    return new kx.PodBuilder({
+        terminationGracePeriodSeconds: 30,
+        securityContext: podConfig.securityContext,
+        automountServiceAccountToken: false,
+        volumes: podConfig.volumes
+            ? podConfig.volumes.map((v) => ({
+                name: v.name.toLowerCase(),
+                emptyDir: v.emptyDir ? {} : undefined,
+                hostPath: v.hostPath ? { path: v.hostPath } : undefined,
+                csi: v.secretName && v.type === 'azureFile'
+                    ? {
+                        driver: 'file.csi.azure.com',
+                        volumeAttributes: {
+                            secretName: v.secretName,
+                            shareName: v.name.toLowerCase(),
+                            // mountOptions:
+                            //   'dir_mode=0777,file_mode=0777,cache=strict,actimeo=30',
+                        },
+                    }
+                    : undefined,
+                persistentVolumeClaim: v.persistentVolumeClaim
+                    ? { claimName: v.persistentVolumeClaim }
+                    : undefined,
+                configMap: v.configMapName ? { name: v.configMapName } : undefined,
+                secret: v.secretName && v.type === undefined
+                    ? { secretName: v.secretName }
+                    : undefined,
+            }))
+            : undefined,
+        containers: [
+            {
+                name,
+                image: podConfig.image,
+                imagePullPolicy: podConfig.imagePullPolicy,
+                ports: podConfig.ports,
+                command: podConfig.command,
+                envFrom,
+                securityContext: podConfig.podSecurityContext,
+                resources,
+                args,
+                volumeMounts: podConfig.volumes
+                    ? podConfig.volumes.map((v) => ({
+                        name: v.name,
+                        mountPath: v.mountPath,
+                        subPath: v.subPath,
+                        readOnly: v.readOnly ?? false,
+                    }))
+                    : undefined,
+                livenessProbe: podConfig.probes?.liveness
+                    ? {
+                        initialDelaySeconds: podConfig.probes.liveness.initialDelaySeconds || 30,
+                        periodSeconds: podConfig.probes.liveness.periodSeconds || 300,
+                        timeoutSeconds: podConfig.probes.liveness.timeoutSeconds || 5,
+                        failureThreshold: podConfig.probes.liveness.failureThreshold || 2,
+                        httpGet: podConfig.probes.liveness.httpGet
+                            ? {
+                                path: podConfig.probes.liveness.httpGet,
+                                port: podConfig.probes.liveness.port,
+                            }
+                            : undefined,
+                    }
+                    : undefined,
+                lifecycle: podConfig.probes?.lifecycle?.postStart
+                    ? {
+                        postStart: {
+                            exec: { command: podConfig.probes.lifecycle.postStart },
+                        },
+                    }
+                    : undefined,
+            },
+        ],
+        imagePullSecrets: podConfig.imagePullSecret
+            ? [
+                {
+                    name: podConfig.imagePullSecret,
+                },
+            ]
+            : undefined,
+        restartPolicy,
+        tolerations: podConfig.tolerations,
+        nodeSelector: podConfig.nodeSelector,
+    });
+};
+exports.default = ({ name, namespace, configMap, secrets, mapSecretsToVolume, mapConfigToVolume, podConfig, deploymentConfig, serviceConfig, jobConfigs, ingressConfig, enableHA, provider, dependsOn, }) => {
+    const deploymentTime = typeof deploymentConfig === 'object' && deploymentConfig.enforceReDeployment
+        ? new Date().getTime().toString()
+        : '';
+    if (!podConfig.volumes)
+        podConfig.volumes = [];
+    const configSecret = (0, ConfigSecret_1.default)({
+        name,
+        namespace,
+        configMap,
+        secrets,
+        provider,
+        dependsOn,
+    });
+    const envFrom = new Array();
+    if (configSecret.config) {
+        envFrom.push({
+            configMapRef: { name: configSecret.config.metadata.name },
+        });
+    }
+    if (configSecret.secret) {
+        //Create Secrets
+        envFrom.push({ secretRef: { name: configSecret.secret.metadata.name } });
+    }
+    if (mapConfigToVolume && configSecret.config) {
+        podConfig.volumes.push({
+            name: mapConfigToVolume.name,
+            mountPath: mapConfigToVolume.path,
+            subPath: mapConfigToVolume.subPath,
+            configMapName: configSecret.config.metadata.name,
+        });
+    }
+    if (mapSecretsToVolume && configSecret.secret) {
+        podConfig.volumes.push({
+            name: mapSecretsToVolume.name,
+            mountPath: mapSecretsToVolume.path,
+            subPath: mapSecretsToVolume.subPath,
+            secretName: configSecret.secret.metadata.name,
+        });
+    }
+    if (!podConfig.ports)
+        podConfig.ports = { http: 8080 };
+    const deployment = deploymentConfig == false
+        ? undefined
+        : new kx.Deployment(name, {
+            metadata: {
+                namespace,
+                annotations: { 'pulumi.com/skipAwait': 'true' },
+                labels: { app: name, time: deploymentTime },
+            },
+            spec: buildPod({
+                name,
+                podConfig,
+                envFrom,
+                args: deploymentConfig?.args,
+                useVirtualHost: deploymentConfig?.useVirtualHost,
+            }).asDeploymentSpec({
+                replicas: deploymentConfig?.replicas ?? 1,
+                revisionHistoryLimit: 1,
+                // strategy: {
+                //   type: deploymentConfig?.strategy,
+                //   rollingUpdate: undefined,
+                // },
+            }),
+        }, {
+            provider,
+            dependsOn,
+            deleteBeforeReplace: true,
+            replaceOnChanges: deploymentConfig?.enforceReDeployment
+                ? ['*']
+                : undefined,
+            customTimeouts: { create: '1m', update: '1m' },
+        });
+    let jobs = undefined;
+    //Jobs
+    if (jobConfigs) {
+        jobs = jobConfigs.map((job) => {
+            if (!job.useVirtualHost && deploymentConfig !== false)
+                job.useVirtualHost = Boolean(deploymentConfig?.useVirtualHost);
+            if (job.cron)
+                return new k8s.batch.v1.CronJob(job.name, {
+                    metadata: { namespace },
+                    spec: buildPod({
+                        name,
+                        podConfig,
+                        envFrom,
+                        useVirtualHost: job.useVirtualHost,
+                        args: job.args,
+                        restartPolicy: job.restartPolicy || 'Never',
+                    }).asCronJobSpec({
+                        failedJobsHistoryLimit: 1,
+                        successfulJobsHistoryLimit: 1,
+                        ...job.cron,
+                    }),
+                }, { provider, deleteBeforeReplace: true });
+            return new kx.Job(job.name, {
+                metadata: {
+                    namespace,
+                    annotations: { 'pulumi.com/skipAwait': 'true' },
+                },
+                spec: buildPod({
+                    name,
+                    podConfig,
+                    envFrom,
+                    useVirtualHost: job.useVirtualHost,
+                    args: job.args,
+                    restartPolicy: job.restartPolicy || 'Never',
+                }).asJobSpec({
+                    ttlSecondsAfterFinished: job.ttlSecondsAfterFinished || 604800, //7 days
+                }),
+            }, { provider, deleteBeforeReplace: true });
+        });
+    }
+    let service = undefined;
+    if (deployment && serviceConfig !== false) {
+        // const servicePort: any = {
+        //   name: 'http',
+        //   port: 80,
+        //   targetPort: podConfig.port,
+        //   protocol: 'TCP',
+        // };
+        //
+        // if (serviceConfig?.usePodPort) {
+        //   servicePort.port = podConfig.port;
+        //   //servicePort.targetPort = podConfig.port;
+        // } else if (serviceConfig?.port) {
+        //   servicePort.port = serviceConfig.port;
+        //   //servicePort.targetPort = podConfig.port;
+        // }
+        const portKeys = Object.keys(podConfig.ports);
+        //Service
+        service = deployment.createService({
+            name,
+            ports: portKeys.length == 1
+                ? [
+                    {
+                        name: 'http',
+                        port: serviceConfig?.usePodPort
+                            ? podConfig.ports[portKeys[0]]
+                            : 80,
+                        targetPort: podConfig.ports[portKeys[0]],
+                        protocol: 'TCP',
+                    },
+                ]
+                : portKeys.map((k) => ({
+                    name: k,
+                    port: podConfig.ports[k],
+                    //targetPort: podConfig.ports[k],
+                    protocol: 'TCP',
+                })),
+            type: serviceConfig?.useClusterIP ? 'LoadBalancer' : undefined,
+        });
+    }
+    //Ingress
+    if (ingressConfig && service) {
+        const ingressProps = {
+            ...ingressConfig,
+            className: ingressConfig.className || 'nginx',
+            name: `${name}-ingress`.toLowerCase(),
+            hostNames: ingressConfig.hostNames.map((host) => (0, pulumi_1.output)(host).apply((h) => h.toLowerCase().replace('https://', ''))),
+            tlsSecretName: ingressConfig.allowHttp
+                ? undefined
+                : ingressConfig.tlsSecretName ||
+                    (0, pulumi_1.output)(ingressConfig.hostNames).apply((h) => (0, CertHelper_1.getTlsName)(ingressConfig.certManagerIssuer
+                        ? (0, Helpers_1.getDomainFromUrl)(h[0])
+                        : (0, Helpers_1.getRootDomainFromUrl)(h[0]), Boolean(ingressConfig.certManagerIssuer))),
+            service,
+            provider,
+            dependsOn: [service],
+        };
+        if (ingressConfig.type === 'nginx') {
+            (0, Ingress_1.NginxIngress)(ingressProps);
+        }
+        else
+            (0, Ingress_1.TraefikIngress)(ingressProps);
+    }
+    if (enableHA && deployment) {
+        (0, PodAutoscaler_1.PodAutoScale)({ ...enableHA, deployment, provider });
+    }
+    return { deployment, service, jobs };
+};
+//# sourceMappingURL=data:application/json;base64,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

package/KubeX/Helpers.d.ts

@@ -0,0 +1,4 @@
+export declare const getKubeDomainCert: (domain: string) => Promise<{
+    cert: string;
+    privateKey: string;
+} | undefined>;

package/KubeX/Helpers.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getKubeDomainCert = void 0;
+const Helpers_1 = require("../Web/Helpers");
+const Certificate_1 = require("../Certificate");
+const getKubeDomainCert = async (domain) => {
+    //Get cert from CertOrder.
+    const cert = await (0, Helpers_1.getCertificateForDomain)(domain);
+    //Convert to K8s cert
+    return cert
+        ? (0, Certificate_1.convertPfxToPem)({
+            base64Cert: cert.base64CertData,
+        })
+        : undefined;
+};
+exports.getKubeDomainCert = getKubeDomainCert;
+//# sourceMappingURL=data:application/json;base64,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

package/KubeX/Ingress/AppGatewayIngress.d.ts

@@ -0,0 +1,2 @@
+declare const _default: () => void;
+export default _default;

package/KubeX/Ingress/AppGatewayIngress.js

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = () => { };
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiQXBwR2F0ZXdheUluZ3Jlc3MuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi9zcmMvS3ViZVgvSW5ncmVzcy9BcHBHYXRld2F5SW5ncmVzcy50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiOztBQUFBLGtCQUFlLEdBQUcsRUFBRSxHQUFFLENBQUMsQ0FBQyJ9

package/KubeX/Ingress/Conts.d.ts

@@ -0,0 +1,13 @@
+export declare const defaultResponseHeaders: {
+    server: string;
+    'X-Powered-By': string;
+    'X-AspNet-Version': string;
+    'Strict-Transport-Security': string;
+    'X-XSS-Protection': string;
+    'X-Frame-Options': string;
+    'Content-Security-Policy': string;
+    'X-Content-Type-Options': string;
+    'Expect-Ct': string;
+    'Cache-Control': string;
+};
+export declare const corsDefaultHeaders = "DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization";

package/KubeX/Ingress/Conts.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.corsDefaultHeaders = exports.defaultResponseHeaders = void 0;
+const StackEnv_1 = require("../../Common/StackEnv");
+exports.defaultResponseHeaders = {
+    server: StackEnv_1.organization,
+    'X-Powered-By': StackEnv_1.organization,
+    'X-AspNet-Version': StackEnv_1.organization,
+    'Strict-Transport-Security': 'max-age=86400; includeSubDomains',
+    'X-XSS-Protection': '1; mode=block',
+    'X-Frame-Options': `SAMEORIGIN`,
+    'Content-Security-Policy': `default-src 'self' data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self'`,
+    'X-Content-Type-Options': 'nosniff',
+    'Expect-Ct': 'max-age=604800,enforce',
+    'Cache-Control': 'max-age=10', //10 second only
+};
+exports.corsDefaultHeaders = 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';
+//# sourceMappingURL=data:application/json;base64,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

package/KubeX/Ingress/NginxIngress.d.ts

@@ -0,0 +1,3 @@
+import { IngressProps } from './type';
+declare const _default: ({ name, className, hostNames, maxUploadSizeMb, allowHttp, internalIngress, tlsSecretName, canary, proxy, auth, responseHeaders, whitelistIps, enableModSecurity, cors, certManagerIssuer, pathType, services, service, provider, dependsOn, }: IngressProps) => import("@pulumi/kubernetes/networking/v1/ingress").Ingress;
+export default _default;

package/KubeX/Ingress/NginxIngress.js

@@ -0,0 +1,186 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const k8s = require("@pulumi/kubernetes");
+const Conts_1 = require("./Conts");
+exports.default = ({ name, className = 'nginx', hostNames, maxUploadSizeMb = 10, allowHttp, internalIngress, tlsSecretName, canary, proxy, auth, responseHeaders, whitelistIps, enableModSecurity, cors, certManagerIssuer, pathType = 'ImplementationSpecific', services, service, provider, dependsOn, }) => {
+    if (!service && !services)
+        throw new Error('Either "service" or "services" is must be provided.');
+    const annotations = {
+        'pulumi.com/skipAwait': 'true',
+        'nginx.ingress.kubernetes.io/body-size': '1024m',
+        'nginx.ingress.kubernetes.io/client-body-buffer-size': '50m',
+        'nginx.ingress.kubernetes.io/client-max-body-size': '50m',
+    };
+    if (maxUploadSizeMb) {
+        annotations['nginx.ingress.kubernetes.io/proxy-body-size'] = `${maxUploadSizeMb}m`;
+    }
+    if (certManagerIssuer) {
+        if (typeof certManagerIssuer === 'string')
+            annotations['cert-manager.io/cluster-issuer'] = certManagerIssuer;
+        else
+            annotations['kubernetes.io/tls-acme'] = 'true';
+    }
+    if (internalIngress) {
+        annotations['service.beta.kubernetes.io/azure-load-balancer-internal'] =
+            'true';
+    }
+    if (canary) {
+        annotations['nginx.ingress.kubernetes.io/canary'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/canary-weight'] = '100';
+        if (canary.headerKey)
+            annotations['nginx.ingress.kubernetes.io/canary-by-header'] =
+                canary.headerKey;
+        if (canary.headerValue)
+            annotations['nginx.ingress.kubernetes.io/canary-by-header-value'] =
+                canary.headerValue;
+        if (canary.headerPattern)
+            annotations['nginx.ingress.kubernetes.io/canary-by-header-pattern'] =
+                canary.headerPattern;
+    }
+    if (proxy?.backendProtocol) {
+        //annotations['nginx.ingress.kubernetes.io/ssl-passthrough'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/backend-protocol'] =
+            proxy.backendProtocol;
+    }
+    if (proxy?.backendUrl) {
+        const vhost = proxy.backendUrl
+            .replace('https://', '')
+            .replace('http://', '');
+        annotations['nginx.ingress.kubernetes.io/upstream-vhost'] = vhost;
+        annotations['nginx.ingress.kubernetes.io/server-snippet'] = `proxy_ssl_name ${vhost};proxy_ssl_server_name on`;
+        annotations['nginx.ingress.kubernetes.io/use-proxy-protocol'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/proxy-ssl-verify'] =
+            proxy.sslVerify ? 'on' : 'off';
+        annotations['nginx.ingress.kubernetes.io/proxy-ssl-verify-depth'] = '1';
+        annotations['nginx.ingress.kubernetes.io/proxy-connect-timeout'] = '3600';
+        annotations['nginx.ingress.kubernetes.io/proxy-read-timeout'] = '3600';
+        annotations['nginx.ingress.kubernetes.io/proxy-send-timeout'] = '3600';
+        if (proxy.tlsSecretName) {
+            annotations['nginx.ingress.kubernetes.io/proxy-ssl-secret'] =
+                proxy.tlsSecretName;
+        }
+    }
+    if (auth?.enableClientTls === true) {
+        // Enable client certificate authentication
+        annotations['nginx.ingress.kubernetes.io/auth-tls-verify-client'] =
+            auth.alwaysRequireCert ? 'on' : 'optional';
+        // Create the secret containing the trusted ca certificates
+        if (auth.caSecret)
+            annotations['nginx.ingress.kubernetes.io/auth-tls-secret'] =
+                auth.caSecret;
+        // Specify the verification depth in the client certificates chain
+        annotations['nginx.ingress.kubernetes.io/auth-tls-verify-depth'] = '1';
+        // Specify an error page to be redirected to verification errors
+        if (auth.errorPage)
+            annotations['nginx.ingress.kubernetes.io/auth-tls-error-page'] =
+                auth.errorPage;
+        // Specify if certificates are passed to upstream server
+        annotations['nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream-header'] = auth.upstreamHeaderKey ?? 'ssl-client-cert';
+    }
+    const responseSecurity = responseHeaders === true
+        ? Conts_1.defaultResponseHeaders
+        : responseHeaders === false
+            ? undefined
+            : {
+                ...Conts_1.defaultResponseHeaders,
+                ...responseHeaders,
+            };
+    if (responseSecurity) {
+        annotations['nginx.ingress.kubernetes.io/configuration-snippet'] = `${Object.keys(responseSecurity)
+            .map((k) => `more_set_headers "${k}: ${responseSecurity[k]}";`)
+            .join('')}`;
+    }
+    //Force Https
+    annotations['kubernetes.io/ingress.allow-http'] = allowHttp
+        ? 'true'
+        : 'false';
+    annotations['ingress.kubernetes.io/force-ssl-redirect'] = allowHttp
+        ? 'false'
+        : 'true';
+    if (cors) {
+        annotations['nginx.ingress.kubernetes.io/cors-allow-origin'] =
+            cors.origins.join(',');
+        annotations['nginx.ingress.kubernetes.io/cors-allow-headers'] = cors.headers
+            ? Conts_1.corsDefaultHeaders + ',' + cors.headers.join(',')
+            : Conts_1.corsDefaultHeaders;
+    }
+    //Whitelist IP Address
+    if (whitelistIps && whitelistIps.length > 0) {
+        annotations['nginx.ingress.kubernetes.io/whitelist-source-range'] =
+            whitelistIps.join(',');
+    }
+    //Mode Security
+    if (enableModSecurity) {
+        annotations['nginx.ingress.kubernetes.io/enable-owasp-core-rules'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/enable-modsecurity'] = 'true';
+        annotations['nginx.ingress.kubernetes.io/modsecurity-transaction-id'] =
+            '$request_id';
+        // annotations[
+        //   'nginx.ingress.kubernetes.io/modsecurity-snippet'
+        // ] = `Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf`;
+    }
+    else {
+        annotations['nginx.ingress.kubernetes.io/enable-owasp-core-rules'] =
+            'false';
+        annotations['nginx.ingress.kubernetes.io/enable-modsecurity'] = 'false';
+    }
+    if (services) {
+        annotations['nginx.ingress.kubernetes.io/rewrite-target'] = '/$1';
+        annotations['nginx.ingress.kubernetes.io/use-regex'] = 'true';
+    }
+    const servicePaths = services
+        ? services.paths.map((s) => ({
+            backend: {
+                service: {
+                    name: s.metadata.name,
+                    port: {
+                        number: s.spec.ports[0].port,
+                    },
+                },
+            },
+            path: `${s.path}/(.*)`,
+            pathType,
+        }))
+        : [
+            {
+                backend: {
+                    service: {
+                        name: service.metadata.name,
+                        port: {
+                            number: service.spec.ports[0].port,
+                            name: service.spec.ports[0].port
+                                ? undefined
+                                : service.spec.ports[0].name,
+                        },
+                    },
+                },
+                path: '/',
+                pathType, //Prefix or ImplementationSpecific
+            },
+        ];
+    return new k8s.networking.v1.Ingress(name, {
+        metadata: {
+            name,
+            namespace: services?.metadata.namespace || service?.metadata.namespace,
+            labels: services?.metadata.labels || service?.metadata.labels,
+            annotations,
+        },
+        spec: {
+            ingressClassName: className,
+            rules: hostNames.map((hostName) => ({
+                host: hostName,
+                http: { paths: servicePaths },
+            })),
+            tls: allowHttp
+                ? undefined
+                : [
+                    {
+                        hosts: hostNames,
+                        secretName: tlsSecretName,
+                    },
+                ],
+        },
+    }, { provider, dependsOn });
+};
+//# sourceMappingURL=data:application/json;base64,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

package/KubeX/Ingress/NginxProxy.d.ts

@@ -0,0 +1,21 @@
+import * as k8s from '@pulumi/kubernetes';
+import { Input, Resource } from '@pulumi/pulumi';
+import { IngressCanary, IngressClassName } from './type';
+interface Props {
+    name: string;
+    namespace: Input<string>;
+    ingressClass?: IngressClassName;
+    host: string;
+    port?: number;
+    proxyUrl: string;
+    proxyTlsSecretName?: string;
+    certManagerIssuer?: boolean;
+    canary?: IngressCanary;
+    whitelistIps?: Array<Input<string>>;
+    enableModSecurity?: boolean;
+    cors?: string[];
+    provider: k8s.Provider;
+    dependsOn?: Input<Input<Resource>[]> | Input<Resource>;
+}
+declare const _default: ({ name, namespace, host, certManagerIssuer, cors, proxyUrl, proxyTlsSecretName, ingressClass, port, dependsOn, provider, ...others }: Props) => import("@pulumi/kubernetes/networking/v1/ingress").Ingress;
+export default _default;