yyvf22 pushed to branch main at Root / Kubernetes / FluxCD Commits: afc9c7fe by yyvf at 2025-08-04T16:08:17-03:00 refactor(cert-manager): change cluster issuer name to letsencrypt-dns01 Issue #7 - - - - - 12 changed files: - apps/base/ademir/ing.yaml - apps/base/codimd/ing.yaml - apps/base/matrix/helmrelease.yaml - apps/base/netbox/helmrelease.yaml - apps/base/nextcloud/helmrelease.yaml - apps/base/rallly/ing.yaml - apps/base/wordpress/ing.yaml - infrastructure/base/cert-manager/clusterissuer.yaml - infrastructure/base/harbor/helmrelease.yaml - infrastructure/base/keycloak/ing.yaml - infrastructure/base/openbao/helmrelease.yaml - monitoring/base/kube-prometheus-stack/helmrelease.yaml Changes: ===================================== apps/base/ademir/ing.yaml ===================================== @@ -4,7 +4,7 @@ metadata: name: ademir namespace: ademir annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 spec: ingressClassName: cilium rules: ===================================== apps/base/codimd/ing.yaml ===================================== @@ -4,7 +4,7 @@ metadata: name: codimd namespace: codimd annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 spec: ingressClassName: cilium rules: ===================================== apps/base/matrix/helmrelease.yaml ===================================== @@ -16,7 +16,7 @@ spec: ingress: className: cilium annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 tlsSecret: matrix-tls postgres: # do not use **internal** postgres db ===================================== apps/base/netbox/helmrelease.yaml ===================================== @@ -98,7 +98,7 @@ spec: enabled: true className: cilium annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 hosts: - host: netbox.k8sstage.c3sl.ufpr.br paths: ===================================== apps/base/nextcloud/helmrelease.yaml ===================================== @@ -18,7 +18,7 @@ spec: enabled: true className: cilium annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 tls: - secretName: nextcloud-tls hosts: ===================================== apps/base/rallly/ing.yaml ===================================== @@ -4,7 +4,7 @@ metadata: name: rallly namespace: rallly annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 spec: ingressClassName: cilium rules: ===================================== apps/base/wordpress/ing.yaml ===================================== @@ -4,7 +4,7 @@ metadata: name: wordpress namespace: wordpress annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 spec: ingressClassName: cilium rules: ===================================== infrastructure/base/cert-manager/clusterissuer.yaml ===================================== @@ -1,13 +1,13 @@ apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: - name: letsencrypt-wildcard + name: letsencrypt-dns01 spec: acme: server: https://acme-v02.api.letsencrypt.org/directory email: root@inf.ufpr.br privateKeySecretRef: - name: letsencrypt-wildcard + name: letsencrypt-dns01 solvers: - dns01: rfc2136: ===================================== infrastructure/base/harbor/helmrelease.yaml ===================================== @@ -19,7 +19,7 @@ spec: hosts: core: harbor.c3sl.ufpr.br annotations: - cert-manager.io/cluster-issuer: "letsencrypt-wildcard" + cert-manager.io/cluster-issuer: letsencrypt-dns01 tls: certSource: secret secret: ===================================== infrastructure/base/keycloak/ing.yaml ===================================== @@ -4,7 +4,7 @@ metadata: name: keycloak namespace: keycloak annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 spec: ingressClassName: cilium rules: ===================================== infrastructure/base/openbao/helmrelease.yaml ===================================== @@ -50,7 +50,7 @@ spec: annotations: ingress.cilium.io/loadbalancer-mode: dedicated ingress.cilium.io/service-type: LoadBalancer - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 ingressClassName: cilium pathType: Prefix hosts: ===================================== monitoring/base/kube-prometheus-stack/helmrelease.yaml ===================================== @@ -19,7 +19,7 @@ spec: ingress: enabled: true annotations: - cert-manager.io/cluster-issuer: letsencrypt-wildcard + cert-manager.io/cluster-issuer: letsencrypt-dns01 ingressClassName: cilium hosts: - grafana.k8sstage.c3sl.ufpr.br View it on GitLab: https://gitlab.c3sl.ufpr.br/root/k8s/fluxcd/-/commit/afc9c7feec2521bcdf95932... -- View it on GitLab: https://gitlab.c3sl.ufpr.br/root/k8s/fluxcd/-/commit/afc9c7feec2521bcdf95932... You're receiving this email because of your account on gitlab.c3sl.ufpr.br.