KropCloud/cert-manager-webhook-example
1
0
Fork 1
mirror of https://github.com/cert-manager/webhook-example.git synced 2025-07-01 22:35:49 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
A cert-manager sample repository for creating an ACME DNS01 solver webhook
88 commits 2 branches 0 tags 12 MiB
Go 78%
Makefile 10.4%
Smarty 9.3%
Dockerfile 2.3%
Find a file
ibm-mend-app[bot] 2a54aa21e3
fix(deps): update github.com/ibm-cloud/bluemix-go digest to 078fcb3 (#28) 
Co-authored-by: ibm-mend-app[bot] <ibm-mend-app[bot]@users.noreply.github.com>
2024-07-20 00:32:59 +00:00
.github/workflows ci(dependencies): remove workflow 2024-05-31 09:08:25 -04:00
deploy/cert-manager-ibm-cis-webhook chore(helm chart): release 2.0.0 2024-01-05 15:29:12 -05:00
docs feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00
testdata/ibm-cloud-cis feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00
.gitignore update version and fix 2022-02-08 10:24:16 +02:00
.tool-versions feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00
.whitesource Create .whitesource 2024-04-08 17:11:10 -04:00
chart-releaser.yaml feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00
CODEOWNERS chore: sync CODEOWNERS 2024-05-21 10:01:54 -04:00
Dockerfile feat: misc security improvements 2023-12-16 11:17:25 -05:00
go.mod fix(deps): update github.com/ibm-cloud/bluemix-go digest to 078fcb3 (#28) 2024-07-20 00:32:59 +00:00
go.sum fix(deps): update github.com/ibm-cloud/bluemix-go digest to 078fcb3 (#28) 2024-07-20 00:32:59 +00:00
LICENSE Initial commit 2019-04-15 15:23:59 +01:00
main.go fix: findLongestMatchingZone now works as intended 2024-01-05 14:42:47 -05:00
main_test.go feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00
Makefile fix(makefile): build native arch instead of always trying to build 2024-01-05 14:28:43 -05:00
OWNERS Annual review of the OWNERS file (2023): Maartje moved to Emeritus Maintainer 2023-08-18 18:19:40 +02:00
README.md feat: initial implementation of ibm cis webhook 2023-12-14 19:51:44 -05:00

README.md

Cert Manager IBM Cloud Internet Services Webhook Solver

Cert Manager's ACME (automated certificate management environment) issuer type supports an optional 'webhook' solver, which can be used to implement custom DNS01 challenge solving logic.

IBM Cloud Internet Services is not officially supported in cert-manager core, so if you want to automatically provision certificates with cert-manager using DNS challenges, you can use this repository to do so.

Usage

Prerequisites

You must have cert-manager already installed in your cluster.

See installation instructions here.

Installation

You can install this webhook using helm:

helm install cert-manager-ibm-cis-webhook --set ibmCloudApiKey="<your IBM Cloud API key>"

Issuer

Create or update an Issuer (or ClusterIssuer) to reference the newly installed solver:

apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
  name: acme-dns-issuer
spec:
  acme:
    email: you@your.email.domain.com
    privateKeySecretRef:
      name: letsencrypt
    server: https://acme-v02.api.letsencrypt.org/directory
    solvers:
    - dns01:
        webhook:
          config:
            ibmCloudCisCrns:
            - 'crn:v1:bluemix:public:internet-svcs:global:a/***:***::'
          groupName: acme.skills.network
          solverName: ibm-cloud-cis
      selector:
        dnsZones:
        - your.site.domain.com

After update your issuer, cert-manager should be able to automatically complete challenges for your certificates on IBM CIS-managed domains.

Contributing

Contributions are welcome. Please see docs/CONTRIBUTING.md to get started.