From 0acec981b349aec3641580336b30bb3cf3332bb6 Mon Sep 17 00:00:00 2001
From: cmacrae <hi@cmacr.ae>
Date: Tue, 25 Aug 2020 09:36:52 +0100
Subject: [PATCH] fix: explicit pki durations to match resulting objects

When using a GitOps deployment model, these resources are always
considered "out of sync", as the resulting Certificate object's
'duration' field also specifies minutes & seconds.

These changes are essentially a no-op, but match the object, for
GitOps compatability.
---
 deploy/dnsimple/templates/pki.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/deploy/dnsimple/templates/pki.yaml b/deploy/dnsimple/templates/pki.yaml
index c020f89..afec0e7 100644
--- a/deploy/dnsimple/templates/pki.yaml
+++ b/deploy/dnsimple/templates/pki.yaml
@@ -29,7 +29,7 @@ metadata:
     heritage: {{ .Release.Service }}
 spec:
   secretName: {{ include "dnsimple-webhook.rootCACertificate" . }}
-  duration: 43800h # 5y
+  duration: 43800h0m0s # 5y
   issuerRef:
     name: {{ include "dnsimple-webhook.selfSignedIssuer" . }}
   commonName: "ca.dnsimple-webhook.cert-manager"
@@ -67,7 +67,7 @@ metadata:
     heritage: {{ .Release.Service }}
 spec:
   secretName: {{ include "dnsimple-webhook.servingCertificate" . }}
-  duration: 8760h # 1y
+  duration: 8760h0m0s # 1y
   issuerRef:
     name: {{ include "dnsimple-webhook.rootCAIssuer" . }}
   dnsNames: