processcube-io · roblen45 · Jun 30, 2026 · May 20, 2025 · May 20, 2025 · May 20, 2025
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,26 @@
+.next
+.vscode
+node_modules
+**.DS_Store
+bin/
+obj/
+db/
+database
+.env.local
+.idea/
+tsconfig.tsbuildinfo
+.vs/
+.react-email
+google_oauth2_client_secrets.env
+dist
+# Python development
+.python-version
+/test-results/
+/playwright-report/
+/blob-report/
+/playwright/.cache/
+
+
+.env
+1password-credentials.json
+hosts
diff --git a/base/artifactShipper/kustomization.yaml b/base/artifactShipper/kustomization.yaml
@@ -2,5 +2,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - github-token-external-secret.yaml
   - job.yaml
diff --git a/base/authority/httproute.yml b/base/authority/httproute.yml
@@ -0,0 +1,18 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: HTTPRoute
+metadata:
+  name: authority
+spec:
+  parentRefs:
+  - name: processcube-gateway
+    sectionName: websecure-authority
+  hostnames:
+  - authority.dev.5minds.cloud
+  rules:
+  - matches:
+    - path:
+        type: PathPrefix
+        value: /
+    backendRefs:
+    - name: authority
+      port: 11560
diff --git a/base/authority/ingress.yml b/base/authority/ingress.yml
diff --git a/base/authority/kustomization.yaml b/base/authority/kustomization.yaml
@@ -2,7 +2,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - ingress.yml
+  - httproute.yml
   - service.yml
   - deployment.yml
 

diff --git a/base/engine/httproute.yml b/base/engine/httproute.yml
@@ -0,0 +1,18 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: HTTPRoute
+metadata:
+  name: engine
+spec:
+  parentRefs:
+  - name: processcube-gateway
+    sectionName: websecure-engine
+  hostnames:
+  - engine.dev.5minds.cloud
+  rules:
+  - matches:
+    - path:
+        type: PathPrefix
+        value: /
+    backendRefs:
+    - name: engine
+      port: 10560
diff --git a/base/engine/ingress.yml b/base/engine/ingress.yml
diff --git a/base/engine/kustomization.yaml b/base/engine/kustomization.yaml
@@ -2,6 +2,6 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - ingress.yml
+  - httproute.yml
   - service.yml
   - deployment.yml
diff --git a/base/gateway.yml b/base/gateway.yml
@@ -0,0 +1,48 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: Gateway
+metadata:
+  name: processcube-gateway
+  annotations:
+    cert-manager.io/cluster-issuer: letsencrypt-production
+spec:
+  gatewayClassName: traefik
+  listeners:
+  - name: web
+    port: 80
+    protocol: HTTP
+    allowedRoutes:
+      namespaces:
+        from: Same
+  - name: websecure-engine
+    port: 443
+    protocol: HTTPS
+    hostname: engine.dev.5minds.cloud
+    tls:
+      mode: Terminate
+      certificateRefs:
+      - name: engine-tls
+    allowedRoutes:
+      namespaces:
+        from: Same
+  - name: websecure-authority
+    port: 443
+    protocol: HTTPS
+    hostname: authority.dev.5minds.cloud
+    tls:
+      mode: Terminate
+      certificateRefs:
+      - name: authority-tls
+    allowedRoutes:
+      namespaces:
+        from: Same
+  - name: websecure-nodered
+    port: 443
+    protocol: HTTPS
+    hostname: nodered.dev.5minds.cloud
+    tls:
+      mode: Terminate
+      certificateRefs:
+      - name: nodered-tls
+    allowedRoutes:
+      namespaces:
+        from: Same
diff --git a/base/http-redirect.yml b/base/http-redirect.yml
@@ -0,0 +1,14 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: HTTPRoute
+metadata:
+  name: http-to-https-redirect
+spec:
+  parentRefs:
+  - name: processcube-gateway
+    sectionName: web
+  rules:
+  - filters:
+    - type: RequestRedirect
+      requestRedirect:
+        scheme: https
+        statusCode: 301
diff --git a/base/kustomization.yaml b/base/kustomization.yaml
@@ -6,4 +6,6 @@ resources:
   - authority/
   - engine/
   - lowcode/
-  - postgres/
+  - postgres/
+  - gateway.yml
+  - http-redirect.yml
diff --git a/base/lowcode/httproute.yaml b/base/lowcode/httproute.yaml
@@ -0,0 +1,18 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: HTTPRoute
+metadata:
+  name: nodered
+spec:
+  parentRefs:
+  - name: processcube-gateway
+    sectionName: websecure-nodered
+  hostnames:
+  - nodered.dev.5minds.cloud
+  rules:
+  - matches:
+    - path:
+        type: PathPrefix
+        value: /
+    backendRefs:
+    - name: nodered
+      port: 30000
diff --git a/base/lowcode/ingress.yaml b/base/lowcode/ingress.yaml
diff --git a/base/lowcode/kustomization.yaml b/base/lowcode/kustomization.yaml
@@ -1,6 +1,6 @@
 
 resources:
 - deployment.yaml
-- ingress.yaml
+- httproute.yaml
 - service.yaml
 - pvc.yaml
diff --git a/hetzner-setup/ProcessCube.Cloud/.gitignore b/hetzner-setup/ProcessCube.Cloud/.gitignore
@@ -0,0 +1,33 @@
+# Terraform files
+*.tfstate
+*.tfstate.*
+.terraform/
+.terraform.lock.hcl
+crash.log
+crash.*.log
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+
+# Sensitive files
+terraform.tfvars
+*.tfvars
+.terraformrc
+terraform.rc
+
+# Kubeconfig
+kubeconfig.yaml
+*.kubeconfig
+
+# SSH keys
+*.pem
+*.key
+id_rsa*
+
+# OS files
+.DS_Store
+Thumbs.db
+
+# Generated files
+ansible/inventory/hosts