From 9f77404f31db3dc5068e62399d424dcdfe2d05af Mon Sep 17 00:00:00 2001
From: Ibrahim Mkusa <ibrahimmkusa@gmail.com>
Date: Fri, 6 Jun 2025 15:30:55 -0400
Subject: [PATCH] adjust request limits;gitea CA -> prod

---
 manifests/cloudflare/README.md | 3 +++
 manifests/gitea/values.yaml    | 5 ++++-
 2 files changed, 7 insertions(+), 1 deletion(-)
 create mode 100644 manifests/cloudflare/README.md

diff --git a/manifests/cloudflare/README.md b/manifests/cloudflare/README.md
new file mode 100644
index 0000000..560e37b
--- /dev/null
+++ b/manifests/cloudflare/README.md
@@ -0,0 +1,3 @@
+cloudflare has limitations on what sort of content you can proxy through their
+network. HTML/CSS and ordinary web traffic is fine, however if you are
+pushing/pulling artifacts like containers or even videos they do rate limit.
diff --git a/manifests/gitea/values.yaml b/manifests/gitea/values.yaml
index 8e2b1ca..c42f062 100644
--- a/manifests/gitea/values.yaml
+++ b/manifests/gitea/values.yaml
@@ -169,7 +169,10 @@ ingress:
   className: nginx
   pathType: Prefix
   annotations: 
-    cert-manager.io/cluster-issuer: "letsencrypt-staging"
+    cert-manager.io/cluster-issuer: "letsencrypt-prod"
+    nginx.ingress.kubernetes.io/proxy-body-size: "0"
+    nginx.ingress.kubernetes.io/proxy-read-timeout: "600"
+    nginx.ingress.kuberentes.io/proxy-send-timeout: "600"
   hosts:
     - host: gitea.kwerezigua.org
       paths: