From 5f0cd94f348273bdaaf1deed39d057bf4e978d14 Mon Sep 17 00:00:00 2001
From: Shahab Dogar <shahab@dogar.dev>
Date: Sat, 12 Oct 2024 22:31:52 +0500
Subject: [PATCH] chore: use RSA certificates and clusterIP on elasticsearch

---
 elasticsearch/cluster.yaml          | 2 ++
 helm/values/externaldns.values.yaml | 1 +
 helm/values/gitea.values.yaml       | 1 -
 helm/values/pihole.values.yaml      | 8 +++-----
 helm/values/prometheus.values.yaml  | 2 +-
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/elasticsearch/cluster.yaml b/elasticsearch/cluster.yaml
index 9a8ef7c..a338e24 100644
--- a/elasticsearch/cluster.yaml
+++ b/elasticsearch/cluster.yaml
@@ -27,6 +27,8 @@ spec:
   version: 8.15.2
   http:
     service:
+      spec:
+        type: ClusterIP
       metadata:
         annotations:
           external-dns.alpha.kubernetes.io/hostname: elastic.dogar.dev
diff --git a/helm/values/externaldns.values.yaml b/helm/values/externaldns.values.yaml
index e1d864e..bb1870c 100644
--- a/helm/values/externaldns.values.yaml
+++ b/helm/values/externaldns.values.yaml
@@ -1,3 +1,4 @@
+interval: 10s
 provider: pihole
 policy: upsert-only
 txtOwnerId: "homelab"
diff --git a/helm/values/gitea.values.yaml b/helm/values/gitea.values.yaml
index f007d3e..36c5e61 100644
--- a/helm/values/gitea.values.yaml
+++ b/helm/values/gitea.values.yaml
@@ -12,7 +12,6 @@ ingress:
   className: nginx-internal
   annotations:
     cert-manager.io/cluster-issuer: cloudflare-issuer
-    cert-manager.io/private-key-algorithm: ED25519
     cert-manager.io/acme-challenge-type: dns01
     cert-manager.io/private-key-size: "4096"
   hosts:
diff --git a/helm/values/pihole.values.yaml b/helm/values/pihole.values.yaml
index 8d103fb..61b71a7 100644
--- a/helm/values/pihole.values.yaml
+++ b/helm/values/pihole.values.yaml
@@ -14,11 +14,9 @@ persistentVolumeClaim:
 ingress:
   enabled: true
   annotations:
-    cert-manager.io/cluster-issuer: cluster-issuer
-    nginx.ingress.kubernetes.io/affinity: "cookie"
-    nginx.ingress.kubernetes.io/session-cookie-name: "http-cookie"
-    nginx.ingress.kubernetes.io/session-cookie-expires: "172800"
-    nginx.ingress.kubernetes.io/session-cookie-max-age: "172800"
+    cert-manager.io/cluster-issuer: cloudflare-issuer
+    cert-manager.io/acme-challenge-type: dns01
+    cert-manager.io/private-key-size: "4096"
   hosts:
     - pihole.dogar.dev
   tls:
diff --git a/helm/values/prometheus.values.yaml b/helm/values/prometheus.values.yaml
index 2f91c1b..0dea4b7 100644
--- a/helm/values/prometheus.values.yaml
+++ b/helm/values/prometheus.values.yaml
@@ -8,8 +8,8 @@ grafana:
     ingressClassName: nginx-internal
     annotations:
       cert-manager.io/cluster-issuer: cloudflare-issuer
-      cert-manager.io/private-key-algorithm: ED25519
       cert-manager.io/acme-challenge-type: dns01
+      cert-manager.io/private-key-size: "4096"
     hosts:
       - grafana.dogar.dev
     tls: