diff --git a/charts/backstage/Chart.yaml b/charts/backstage/Chart.yaml
index c8cd3c1..ea90ea9 100644
--- a/charts/backstage/Chart.yaml
+++ b/charts/backstage/Chart.yaml
@@ -38,4 +38,4 @@ sources:
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 1.9.6
+version: 1.10.0
diff --git a/charts/backstage/README.md b/charts/backstage/README.md
index 76693e2..7386cf0 100644
--- a/charts/backstage/README.md
+++ b/charts/backstage/README.md
@@ -2,7 +2,7 @@
# Backstage Helm Chart
[](https://artifacthub.io/packages/search?repo=backstage)
-
+
A Helm chart for deploying a Backstage application
@@ -158,10 +158,12 @@ Kubernetes: `>= 1.19.0-0`
| global | Global parameters Global Docker image parameters Please, note that this will override the image parameters, including dependencies, configured to use the global value Current available global Docker image parameters: imageRegistry, imagePullSecrets and storageClass | object | See below |
| global.imagePullSecrets | Global Docker registry secret names as an array E.g. `imagePullSecrets: [myRegistryKeySecretName]` | list | `[]` |
| global.imageRegistry | Global Docker image registry | string | `""` |
-| ingress | Ingress parameters | object | `{"annotations":{},"className":"","enabled":false,"host":"","path":"/","tls":{"enabled":false,"secretName":""}}` |
+| ingress | Ingress parameters | object | `{"annotations":{},"className":"","enabled":false,"extraHosts":[],"extraTls":[],"host":"","path":"/","tls":{"enabled":false,"secretName":""}}` |
| ingress.annotations | Additional annotations for the Ingress resource | object | `{}` |
| ingress.className | Name of the IngressClass cluster resource which defines which controller will implement the resource (e.g nginx) | string | `""` |
| ingress.enabled | Enable the creation of the ingress resource | bool | `false` |
+| ingress.extraHosts | List of additional hostnames to be covered with this ingress record (e.g. a CNAME) | list | `[]` |
+| ingress.extraTls | The TLS configuration for additional hostnames to be covered with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls | list | `[]` |
| ingress.host | Hostname to be used to expose the route to access the backstage application (e.g: backstage.IP.nip.io) | string | `""` |
| ingress.path | Path to be used to expose the full route to access the backstage application (e.g: IP.nip.io/backstage) | string | `"/"` |
| ingress.tls | Ingress TLS parameters | object | `{"enabled":false,"secretName":""}` |
diff --git a/charts/backstage/ci/ingress-extraHosts-values.yaml b/charts/backstage/ci/ingress-extraHosts-values.yaml
new file mode 100644
index 0000000..3c338a6
--- /dev/null
+++ b/charts/backstage/ci/ingress-extraHosts-values.yaml
@@ -0,0 +1,12 @@
+ingress:
+ enabled: true
+ host: backstage.example.com
+ tls:
+ enabled: true
+ secretName: "backstage-tls"
+ extraHosts:
+ - name: backstage.dev.example.com
+ extraTls:
+ - hosts:
+ - backstage.dev.example.com
+ secretName: "backstage-dev-tls"
diff --git a/charts/backstage/ci/ingress-values.yaml b/charts/backstage/ci/ingress-values.yaml
new file mode 100644
index 0000000..82432bb
--- /dev/null
+++ b/charts/backstage/ci/ingress-values.yaml
@@ -0,0 +1,6 @@
+ingress:
+ enabled: true
+ host: backstage.example.com
+ tls:
+ enabled: true
+ secretName: "backstage-tls"
diff --git a/charts/backstage/templates/ingress.yaml b/charts/backstage/templates/ingress.yaml
index b7e82b1..fdbddc0 100644
--- a/charts/backstage/templates/ingress.yaml
+++ b/charts/backstage/templates/ingress.yaml
@@ -20,11 +20,16 @@ spec:
{{- if .Values.ingress.className }}
ingressClassName: {{ .Values.ingress.className | quote }}
{{- end }}
- {{- if .Values.ingress.tls.enabled }}
+ {{- if or .Values.ingress.tls.enabled .Values.ingress.extraTls }}
tls:
+ {{- if .Values.ingress.tls.enabled }}
- hosts:
- {{ include "common.tplvalues.render" ( dict "value" .Values.ingress.host "context" $ ) }}
secretName: {{ include "common.tplvalues.render" ( dict "value" .Values.ingress.tls.secretName "context" $ ) }}
+ {{- end }}
+ {{- if .Values.ingress.extraTls }}
+ {{- include "common.tplvalues.render" ( dict "value" .Values.ingress.extraTls "context" $ ) | nindent 4 }}
+ {{- end }}
{{- end }}
rules:
- host: {{ include "common.tplvalues.render" ( dict "value" .Values.ingress.host "context" $ ) }}
@@ -37,4 +42,16 @@ spec:
name: {{ include "common.names.fullname" . }}
port:
number: {{ .Values.service.ports.backend }}
+ {{- range .Values.ingress.extraHosts }}
+ - host: {{ .name | quote }}
+ http:
+ paths:
+ - path: {{ default $.Values.ingress.path .path }}
+ pathType: {{ default "Prefix" .pathType }}
+ backend:
+ service:
+ name: {{ include "common.names.fullname" $ }}
+ port:
+ number: {{ default $.Values.service.ports.backend .port }}
+ {{- end }}
{{- end }}
diff --git a/charts/backstage/values.schema.json b/charts/backstage/values.schema.json
index de94cad..748c2b1 100644
--- a/charts/backstage/values.schema.json
+++ b/charts/backstage/values.schema.json
@@ -6124,6 +6124,52 @@
"title": "Enable the creation of the ingress resource",
"type": "boolean"
},
+ "extraHosts": {
+ "default": [],
+ "items": {
+ "additionalProperties": false,
+ "properties": {
+ "name": {
+ "type": "string"
+ },
+ "path": {
+ "type": "string"
+ },
+ "pathType": {
+ "type": "string"
+ },
+ "port": {
+ "type": "integer"
+ }
+ },
+ "type": "object"
+ },
+ "title": "List of additional hostnames to be covered with this ingress record",
+ "type": "array"
+ },
+ "extraTls": {
+ "default": [],
+ "items": {
+ "description": "IngressTLS describes the transport layer security associated with an ingress.",
+ "properties": {
+ "hosts": {
+ "description": "hosts is a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.",
+ "items": {
+ "type": "string"
+ },
+ "type": "array",
+ "x-kubernetes-list-type": "atomic"
+ },
+ "secretName": {
+ "description": "secretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the \"Host\" header field used by an IngressRule, the SNI host is used for termination and value of the \"Host\" header is used for routing.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
+ "title": "The TLS configuration for additional hostnames to be covered with this ingress record.",
+ "type": "array"
+ },
"host": {
"default": "",
"examples": [
diff --git a/charts/backstage/values.schema.tmpl.json b/charts/backstage/values.schema.tmpl.json
index 7e08bd7..a6ce88d 100644
--- a/charts/backstage/values.schema.tmpl.json
+++ b/charts/backstage/values.schema.tmpl.json
@@ -143,6 +143,29 @@
"backstage.10.0.0.1.nip.io"
]
},
+ "extraHosts": {
+ "title": "List of additional hostnames to be covered with this ingress record",
+ "type": "array",
+ "default": [],
+ "items": {
+ "type": "object",
+ "additionalProperties": false,
+ "properties": {
+ "name": {
+ "type": "string"
+ },
+ "path": {
+ "type": "string"
+ },
+ "pathType": {
+ "type": "string"
+ },
+ "port": {
+ "type": "integer"
+ }
+ }
+ }
+ },
"path": {
"title": "Path to be used to expose the full route to access the backstage application.",
"type": "string",
@@ -168,6 +191,14 @@
"default": ""
}
}
+ },
+ "extraTls": {
+ "title": "The TLS configuration for additional hostnames to be covered with this ingress record.",
+ "type": "array",
+ "items": {
+ "$ref": "https://raw.githubusercontent.com/yannh/kubernetes-json-schema/master/master/_definitions.json#/definitions/io.k8s.api.networking.v1.IngressTLS"
+ },
+ "default": []
}
}
},
diff --git a/charts/backstage/values.yaml b/charts/backstage/values.yaml
index 3453106..80a701a 100644
--- a/charts/backstage/values.yaml
+++ b/charts/backstage/values.yaml
@@ -67,6 +67,15 @@ ingress:
# -- Hostname to be used to expose the route to access the backstage application (e.g: backstage.IP.nip.io)
host: ""
+ # -- List of additional hostnames to be covered with this ingress record (e.g. a CNAME)
+ #
+ extraHosts: []
+
# -- Path to be used to expose the full route to access the backstage application (e.g: IP.nip.io/backstage)
path: "/"
@@ -79,6 +88,15 @@ ingress:
# -- The name to which the TLS Secret will be called
secretName: ""
+ # -- The TLS configuration for additional hostnames to be covered with this ingress record.
+ #
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
+ #
+ extraTls: []
+
# -- Backstage parameters
# @default -- See below
backstage: