我可以在入口定义中直接添加之前用tf生成的SSL策略:例如。
创建策略
resource "google_compute_ssl_policy" "nonprod-ssl-policy" {
name = "nonprod-ssl-policy"
profile = "MODERN"
min_tls_version = "TLS_1_2"
}
然后,我想部署一个入口文件,例如:
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: ingress-resource
annotations:
kubernetes.io/ingress.global-static-ip-name: [IP]
networking.gke.io/managed-certificates: [cert]
kubernetes.io/ingress.allow-http: "false"
spec:
rules:
- host:
http:
paths:
- path: [path]
backend:
serviceName: [svc-name]
servicePort: [port]
可以添加之前创建的ssl策略吗?
谅谅