From a30a13ba5d421e360a62dc80213c6eaa6efdf7d9 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Sun, 13 Mar 2022 20:30:47 +0100
Subject: [PATCH] fix(ingress-nginx): Force ndots in ingress controller

It seems that DNS lookups fail for whatever reasons since the update to
Kubernets 1.22 and result in inaccessiblity of some services. It seems
to be related to ndots, so let's fix it like this?
---
 apps/base/goharbor/namespace.yaml        | 1 +
 apps/base/matrix/namespace.yaml          | 1 +
 infrastructure/nginx-system/release.yaml | 4 ++++
 3 files changed, 6 insertions(+)

diff --git a/apps/base/goharbor/namespace.yaml b/apps/base/goharbor/namespace.yaml
index 15df40ed4..2bc10b006 100644
--- a/apps/base/goharbor/namespace.yaml
+++ b/apps/base/goharbor/namespace.yaml
@@ -4,6 +4,7 @@ metadata:
   name: goharbor
   labels:
     name: goharbor
+    pod-security.kubernetes.io/audit: restricted
 ---
 apiVersion: v1
 kind: ServiceAccount
diff --git a/apps/base/matrix/namespace.yaml b/apps/base/matrix/namespace.yaml
index c839643f5..6808781d7 100644
--- a/apps/base/matrix/namespace.yaml
+++ b/apps/base/matrix/namespace.yaml
@@ -4,6 +4,7 @@ metadata:
   name: matrix
   labels:
     name: matrix
+    pod-security.kubernetes.io/audit: restricted
 ---
 apiVersion: v1
 kind: ServiceAccount
diff --git a/infrastructure/nginx-system/release.yaml b/infrastructure/nginx-system/release.yaml
index 7ec491cdf..95fd8c8f9 100644
--- a/infrastructure/nginx-system/release.yaml
+++ b/infrastructure/nginx-system/release.yaml
@@ -46,6 +46,10 @@ data:
         hsts-include-subdomains: false
         enable-brotli: "true"
         use-http2: "true"
+      dnsConfig:
+        options:
+          - name: ndots
+            value: "1"
       replicaCount: 2
       minAvailable: 1
       resources:
-- 
GitLab