KropCloud/gitops
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

added cert-manager-cf config (base)

Browse source
This commit is contained in:
Jakub Kropáček 2025-01-29 11:24:55 +01:00
parent 826f74e04f
commit cf73809362
5 changed files with 40 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.envs/.cloudflare.template Normal file
View file

@ -0,0 +1,2 @@
CF_API_TOKEN=
CF_API_KEY=

2
.gitignore vendored Normal file
View file

@ -0,0 +1,2 @@
.envs/.*
!.envs/.*.template

9
kustomization.yaml
View file

@ -4,6 +4,15 @@ kind: Kustomization
resources: resources:
- ./kustomize/metallb.yaml - ./kustomize/metallb.yaml
- ./kustomize/csi-driver-nfs.yaml - ./kustomize/csi-driver-nfs.yaml
- ./kustomize/cert-manager-cloudflare.yaml
secretGenerator:
- name: cert-manager-cloudflare
envs:
- .envs/.cloudflare
configurations:
- ./kustomizeconfig/clusterIssuer.yaml
labels: labels:
- includeSelectors: true - includeSelectors: true

20
kustomize/cert-manager-cloudflare.yaml Normal file
View file

@ -0,0 +1,20 @@
apiVersion: cert-manager.io/v1
kind: Issuer
metadata:
name: cloudflare-issuer
spec:
acme:
email: kropikuba@gmail.com
server: https://acme-v02.api.letsencrypt.org/directory
privateKeySecretRef:
name: cloudflare-issuer-account-key
solvers:
- dns01:
cloudflare:
email: kropikuba@gmail.com
apiTokenSecretRef:
name: cert-manager-cloudflare
key: CF_API_TOKEN
apiKeySecretRef:
name: cert-manager-cloudflare
key: CF_API_KEY

7
kustomizeconfig/clusterIssuer.yaml Normal file
View file

@ -0,0 +1,7 @@
nameReference:
- kind: Secret
fieldSpecs:
- kind: Issuer
path: spec/acme/solvers/dns01/cloudflare/apiTokenSecretRef/name
- kind: Issuer
path: spec/acme/solvers/dns01/cloudflare/apiKeySecretRef/name