-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathclusterissuer-solver-dns01-webhook.yaml
40 lines (35 loc) · 1.5 KB
/
clusterissuer-solver-dns01-webhook.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: sc-cert-manager-clusterissuer-letsencrypt-otcdns
spec:
acme:
# The ACME server URL
server: https://acme-v02.api.letsencrypt.org/directory
# Email address used for ACME registration
email: [email protected] # REPLACE THIS WITH YOUR EMAIL!!!
# Name of a secret used to store the ACME account private key
privateKeySecretRef:
name: letsencrypt-otcdns
solvers:
- dns01:
webhook:
# See main.go > GroupName. github.com/hpi-schul-cloud/infra-otc-cert-manager-webhook
groupName: infra-otc-cert-manager-webhook.hpi-schul-cloud.github.com
# See solver.go > Name.
solverName: otcdns
# The following config is given to the webhook in the Present and CleanUp methods as "c.Config" in json format.
# It will be parsed into the OtcDncConfig data structure.
# The conformanceTest will load this information from the config.json in the configured ManifestPath.
config:
authURL: "https://iam.eu-de.otc.t-systems.com:443/v3"
region: "eu-de"
# Only for local testing, if no secrets are available.
# accessKey: ACCESSKEY
# secretKey: SECRETKEY
accessKeySecretRef:
name: otcdns-credentials
key: accessKey
secretKeySecretRef:
name: otcdns-credentials
key: secretKey