2023-01-05 10:27:40 +00:00
|
|
|
{{- if and .Values.tls.enabled .Values.tls.createCerts }}
|
|
|
|
|
apiVersion: cert-manager.io/v1
|
|
|
|
|
kind: Certificate
|
|
|
|
|
metadata:
|
|
|
|
|
name: {{ include "dragonfly.fullname" . }}
|
2023-02-28 13:06:20 +00:00
|
|
|
namespace: {{ .Release.Namespace }}
|
2023-01-05 10:27:40 +00:00
|
|
|
labels:
|
|
|
|
|
{{- include "dragonfly.labels" . | nindent 4 }}
|
|
|
|
|
spec:
|
|
|
|
|
commonName: '{{ include "dragonfly.fullname" . }}'
|
|
|
|
|
dnsNames:
|
|
|
|
|
- '*.{{ include "dragonfly.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local'
|
|
|
|
|
- '{{ include "dragonfly.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local'
|
|
|
|
|
- '{{ include "dragonfly.fullname" . }}.{{ .Release.Namespace }}.svc'
|
|
|
|
|
- '{{ include "dragonfly.fullname" . }}.{{ .Release.Namespace }}'
|
|
|
|
|
- '{{ include "dragonfly.fullname" . }}'
|
|
|
|
|
- localhost
|
|
|
|
|
duration: {{ required "tls.duration is required, if createCerts is enabled" .Values.tls.duration }}
|
|
|
|
|
ipAddresses:
|
|
|
|
|
- 127.0.0.1
|
|
|
|
|
issuerRef:
|
|
|
|
|
kind: {{ required "tls.issuer.kind is required, if createCerts is enabled" .Values.tls.issuer.kind }}
|
|
|
|
|
name: {{ required "tls.issuer.name is required, if createCerts is enabled" .Values.tls.issuer.name }}
|
2024-03-25 06:59:42 +00:00
|
|
|
group: {{ .Values.tls.issuer.group }}
|
2023-01-05 10:27:40 +00:00
|
|
|
secretName: '{{ include "dragonfly.fullname" . }}-server-tls'
|
|
|
|
|
usages:
|
|
|
|
|
- client auth
|
|
|
|
|
- server auth
|
|
|
|
|
- signing
|
|
|
|
|
- key encipherment
|
|
|
|
|
{{- end }}
|
