mirror of
https://github.com/apricote/home-cloud.git
synced 2026-01-13 13:01:03 +00:00
40 lines
1 KiB
YAML
40 lines
1 KiB
YAML
|
apiVersion: v1
|
||
|
|
kind: Namespace
|
||
|
|
metadata:
|
||
|
|
name: cert-manager
|
||
|
|
|
||
|
|
---
|
||
|
|
apiVersion: helm.cattle.io/v1
|
||
|
|
kind: HelmChart
|
||
|
|
metadata:
|
||
|
|
name: cert-manager
|
||
|
|
namespace: kube-system
|
||
|
|
spec:
|
||
|
|
chart: cert-manager
|
||
|
|
repo: https://charts.jetstack.io
|
||
|
|
version: ${version}
|
||
|
|
targetNamespace: cert-manager
|
||
|
|
set:
|
||
|
|
ingressShim.defaultIssuerName: "letsencrypt-prod"
|
||
|
|
ingressShim.defaultIssuerKind: "ClusterIssuer"
|
||
|
|
|
||
|
|
---
|
||
|
|
apiVersion: cert-manager.io/v1alpha2
|
||
|
|
kind: ClusterIssuer
|
||
|
|
metadata:
|
||
|
|
name: letsencrypt-prod
|
||
|
|
spec:
|
||
|
|
acme:
|
||
|
|
# You must replace this email address with your own.
|
||
|
|
# Let's Encrypt will use this to contact you about expiring
|
||
|
|
# certificates, and issues related to your account.
|
||
|
|
email: ${email}
|
||
|
|
server: https://acme-v02.api.letsencrypt.org/directory
|
||
|
|
privateKeySecretRef:
|
||
|
|
# Secret resource that will be used to store the account's private key.
|
||
|
|
name: letsencrypt-prod-cluster-issuer-account
|
||
|
|
# Add a single challenge solver, HTTP01 using nginx
|
||
|
|
solvers:
|
||
|
|
- http01:
|
||
|
|
ingress: {}
|