From 02ac05fdac5735f095e3af0dc5e61dc79fe6a9c4 Mon Sep 17 00:00:00 2001 From: j37hr0 Date: Sun, 22 Mar 2026 16:50:05 +1300 Subject: [PATCH] fixed clusterissuer, added wildcard cert manifests --- infrastructure/certmanager/clusterissuer.yaml | 11 +++++++---- .../certmanager/jethrocottonwildcardcert.yaml | 13 +++++++++++++ infrastructure/certmanager/jpcitwildcardcert.yaml | 13 +++++++++++++ .../certmanager/numbergoupwildcartcert.yaml | 13 +++++++++++++ 4 files changed, 46 insertions(+), 4 deletions(-) create mode 100644 infrastructure/certmanager/jethrocottonwildcardcert.yaml create mode 100644 infrastructure/certmanager/jpcitwildcardcert.yaml create mode 100644 infrastructure/certmanager/numbergoupwildcartcert.yaml diff --git a/infrastructure/certmanager/clusterissuer.yaml b/infrastructure/certmanager/clusterissuer.yaml index 42ccce9..2b71775 100644 --- a/infrastructure/certmanager/clusterissuer.yaml +++ b/infrastructure/certmanager/clusterissuer.yaml @@ -1,7 +1,7 @@ apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: - name: letsencrypt + name: letsencrypt-dns spec: acme: email: jethro.cotton3@gmail.com @@ -9,6 +9,9 @@ spec: privateKeySecretRef: name: letsencrypt-account-key solvers: - - http01: - ingress: - class: traefik + - dns01: + cloudflare: + email: jethro.cotton3@gmail.com + apiTokenSecretRef: + name: cloudflare-api-token + key: cloudflare-api-key diff --git a/infrastructure/certmanager/jethrocottonwildcardcert.yaml b/infrastructure/certmanager/jethrocottonwildcardcert.yaml new file mode 100644 index 0000000..a3fc78c --- /dev/null +++ b/infrastructure/certmanager/jethrocottonwildcardcert.yaml @@ -0,0 +1,13 @@ +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: wildcard-jethrocotton-com + namespace: cert-manager +spec: + secretName: wildcard-jethrocotton-com-tls + issuerRef: + name: letsencrypt-dns + kind: ClusterIssuer + commonName: "*.jethrocotton.com" + dnsNames: + - "*.jethrocotton.com" diff --git a/infrastructure/certmanager/jpcitwildcardcert.yaml b/infrastructure/certmanager/jpcitwildcardcert.yaml new file mode 100644 index 0000000..83230e9 --- /dev/null +++ b/infrastructure/certmanager/jpcitwildcardcert.yaml @@ -0,0 +1,13 @@ +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: wildcard-jpcit-coza + namespace: cert-manager +spec: + secretName: wildcard-jpcit-coza-tls + issuerRef: + name: letsencrypt-dns + kind: ClusterIssuer + commonName: "*.jpcit.co.za" + dnsNames: + - "*.jpcit.co.za" diff --git a/infrastructure/certmanager/numbergoupwildcartcert.yaml b/infrastructure/certmanager/numbergoupwildcartcert.yaml new file mode 100644 index 0000000..dba9a7d --- /dev/null +++ b/infrastructure/certmanager/numbergoupwildcartcert.yaml @@ -0,0 +1,13 @@ +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: wildcard-numbergoup-coza + namespace: cert-manager +spec: + secretName: wildcard-numbergoup-coza-tls + issuerRef: + name: letsencrypt-dns + kind: ClusterIssuer + commonName: "*.numbergoup.co.za" + dnsNames: + - "*.numbergoup.co.za"