From b1c65055f36dbc0deef2d16a25b49558377c93ab Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Simen=20R=C3=B8stvik?= <simen.rostvik@crayon.com>
Date: Wed, 30 Nov 2022 13:44:56 +0100
Subject: [PATCH] LB

---
 apps/templates/authentik.yaml | 19 +++++++++++++++++++
 apps/templates/traefik.yaml   |  9 +++++++++
 2 files changed, 28 insertions(+)

diff --git a/apps/templates/authentik.yaml b/apps/templates/authentik.yaml
index b3aede9..0d67575 100644
--- a/apps/templates/authentik.yaml
+++ b/apps/templates/authentik.yaml
@@ -62,3 +62,22 @@ spec:
       selfHeal: true
     syncOptions:
       - CreateNamespace=true
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRoute
+metadata:
+  name: authentik-traefik
+  namespace: authentik
+spec:
+  entryPoints:
+    - websecure
+  routes:
+    - kind: Rule
+      match: Host("authentik.roxedus.com")
+      services:
+        - name: authentik-server
+          port: 9443
+          scheme: https
+          serversTransport: selfsigned
+  tls:
+    certResolver: cloudflare
\ No newline at end of file
diff --git a/apps/templates/traefik.yaml b/apps/templates/traefik.yaml
index 658bd11..e7d3371 100644
--- a/apps/templates/traefik.yaml
+++ b/apps/templates/traefik.yaml
@@ -126,3 +126,12 @@ spec:
       selfHeal: true
     syncOptions:
       - CreateNamespace=true
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: ServersTransport
+metadata:
+  name: selfsigned
+  namespace: traefik
+
+spec:
+  insecureSkipVerify: true