탐색 도움말
로그인
cecf
/
deploy
5
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: e4538f3d9b
브랜치 태그
deploy
/
timescaledb
/
stackgres-operator
/
templates
/
configure-cert-manager.yaml

configure-cert-manager.yaml 1.1 KB
히스토리 Raw

12345678910111213141516171819202122232425262728293031323334353637383940 
  1. {{- if .Values.cert.certManager.autoConfigure }}
    2. 

  2. ---
    3. 

  3. apiVersion: cert-manager.io/v1
    4. 

  4. kind: Issuer
    5. 

  5. metadata:
    6. 

  6.   name: "{{ .Release.Name }}-self-signed-issuer"
    7. 

  7.   namespace: "{{ .Release.Namespace }}"
    8. 

  8. spec:
    9. 

  9.   selfSigned: {}
    10. 

  10. ---
    11. 

  11. apiVersion: cert-manager.io/v1
    12. 

  12. kind: Certificate
    13. 

  13. metadata:
    14. 

  14.   name: "{{ .Release.Name }}-certs"
    15. 

  15.   namespace: "{{ .Release.Namespace }}"
    16. 

  16. spec:
    17. 

  17.   secretName: "{{ include "cert-name" . }}"
    18. 

  18.   duration: "{{ .Values.cert.certManager.duration }}"
    19. 

  19.   renewBefore: "{{ .Values.cert.certManager.renewBefore }}"
    20. 

  20.   subject:
    21. 

  21.     organizations:
    22. 

  22.       - OnGres
    23. 

  23.   isCA: true
    24. 

  24.   privateKey:
    25. 

  25.     algorithm: RSA
    26. 

  26.     encoding: "{{ .Values.cert.certManager.encoding }}"
    27. 

  27.     size: {{ .Values.cert.certManager.size }}
    28. 

  28.   usages:
    29. 

  29.     - server auth
    30. 

  30.     - client auth
    31. 

  31.   dnsNames:
    32. 

  32.     - {{ .Release.Name }}
    33. 

  33.     - {{ .Release.Name }}.{{ .Release.Namespace }}
    34. 

  34.     - {{ .Release.Name }}.{{ .Release.Namespace }}.svc
    35. 

  35.     - {{ .Release.Name }}.{{ .Release.Namespace }}.svc.cluster.local
    36. 

  36.   issuerRef:
    37. 

  37.     name: "{{ .Release.Name }}-self-signed-issuer"
    38. 

  38.     kind: Issuer
    39. 

  39.     group: cert-manager.io
    40. 

  40. {{ end }}
    41.