add cert-manager configuration

2023-08-30 16:23:34 +02:00
parent d33d3b150d
commit 785cc54cef
8 changed files with 135 additions and 24 deletions
--- a/overlays/dev/resources/cert-manager/kustomization.yaml
+++ b/overlays/dev/resources/cert-manager/kustomization.yaml
@ -0,0 +1,7 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- ./resources/cluster-issuer.yaml
+- ./resources/ca.yaml
+- ./resources/issuer.yaml
--- a/overlays/dev/resources/cert-manager/resources/ca.yaml
+++ b/overlays/dev/resources/cert-manager/resources/ca.yaml
@ -0,0 +1,19 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: cadoles-selfsigned-ca
+#  namespace: cert-manager
+#  namespace: ingress-nginx
+
+spec:
+  isCA: true
+  commonName: cadoles-selfsigned-ca
+#  secretName: root-secret
+  secretName: cadoles-selfsigned-ca
+  privateKey:
+    algorithm: ECDSA
+    size: 256
+  issuerRef:
+    name: cadoles-selfsigned-issuer
+    kind: ClusterIssuer
+    group: cert-manager.io
--- a/overlays/dev/resources/cert-manager/resources/cluster-issuer.yaml
+++ b/overlays/dev/resources/cert-manager/resources/cluster-issuer.yaml
@ -0,0 +1,6 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: cadoles-selfsigned-issuer
+spec:
+  selfSigned: {}
--- a/overlays/dev/resources/cert-manager/resources/issuer.yaml
+++ b/overlays/dev/resources/cert-manager/resources/issuer.yaml
@ -0,0 +1,9 @@
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  name: cadoles-ca-issuer
+#  namespace: cert-manager
+#  namespace: ingress-nginx
+spec:
+  ca:
+    secretName: cadoles-selfsigned-ca