initial code
This commit is contained in:
Rob Kooper
parent
53b95fad2c
commit
1db7c29c2f
6 changed files with 285 additions and 0 deletions
58
traefik-certmanager.yaml
Normal file
58
traefik-certmanager.yaml
Normal file
|
|
@ -0,0 +1,58 @@
|
|||
apiVersion: v1
|
||||
kind: ServiceAccount
|
||||
metadata:
|
||||
name: traefik-certmanager
|
||||
namespace: traefik
|
||||
---
|
||||
kind: ClusterRole
|
||||
apiVersion: rbac.authorization.k8s.io/v1
|
||||
metadata:
|
||||
name: traefik-certmanager
|
||||
rules:
|
||||
- apiGroups: ["traefik.containo.us"]
|
||||
resources: ["ingressroutes"]
|
||||
verbs: ["watch"]
|
||||
- apiGroups: ["cert-manager.io"]
|
||||
resources: ["certificates"]
|
||||
verbs: ["get", "create", "delete"]
|
||||
---
|
||||
kind: ClusterRoleBinding
|
||||
apiVersion: rbac.authorization.k8s.io/v1
|
||||
metadata:
|
||||
name: traefik-certmanager
|
||||
subjects:
|
||||
- kind: ServiceAccount
|
||||
name: traefik-certmanager
|
||||
namespace: traefik
|
||||
roleRef:
|
||||
kind: ClusterRole
|
||||
name: traefik-certmanager
|
||||
apiGroup: rbac.authorization.k8s.io
|
||||
---
|
||||
apiVersion: apps/v1
|
||||
kind: Deployment
|
||||
metadata:
|
||||
name: traefik-certmanager
|
||||
namespace: traefik
|
||||
spec:
|
||||
replicas: 1
|
||||
selector:
|
||||
matchLabels:
|
||||
app.kubernetes.io/name: traefik-certmanager
|
||||
template:
|
||||
metadata:
|
||||
labels:
|
||||
app.kubernetes.io/name: traefik-certmanager
|
||||
spec:
|
||||
serviceAccount: traefik-certmanager
|
||||
containers:
|
||||
- name: traefik-certmanager
|
||||
image: kooper/traefik-certmanager
|
||||
imagePullPolicy: Always
|
||||
env:
|
||||
- name: ISSUER_NAME
|
||||
value: letsencrypt
|
||||
- name: ISSUER_KIND
|
||||
value: ClusterIssuer
|
||||
- name: CERT_CLEANUP
|
||||
value: "false"
|
||||
Reference in a new issue