feat: add Cloudflare ClusterIssuer and configure gateway HTTPS support with TLS termination

05-default-gateway/templates/default-gateway.yaml

@@ -3,6 +3,8 @@ apiVersion: gateway.networking.k8s.io/v1
 metadata:
   name: http
   namespace: kgateway-system
+  annotations:
+    cert-manager.io/cluster-issuer: "cloudflare-cluster-issuer"
 spec:
   gatewayClassName: kgateway
   listeners:
@@ -12,3 +14,15 @@ spec:
     allowedRoutes:
       namespaces:
         from: All
+  - protocol: HTTPS
+    port: 443
+    name: https
+    hostname: "*.homelab-test.hnrx.net"
+    allowedRoutes:
+      namespaces:
+        from: All
+    tls:
+        mode: Terminate
+        certificateRefs:
+          - name: homelab-test-hnrx-net-tls
+