29 lines
1.0 KiB
YAML
29 lines
1.0 KiB
YAML
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: wildcard-mnke-org
|
|
namespace: cert-manager
|
|
spec:
|
|
secretName: wildcard-mnke-org-tls
|
|
secretTemplate:
|
|
annotations:
|
|
reflector.v1.k8s.emberstack.com/reflection-allowed: "true"
|
|
reflector.v1.k8s.emberstack.com/reflection-auto-enabled: "true" # Auto create reflection for matching namespaces
|
|
# If we don't specify the allow and auto list, then it'll sync to all
|
|
# namespaces.
|
|
# Yes, this isn't a great idea. Yes, I'm also too lazy too care.
|
|
# reflector.v1.k8s.emberstack.com/reflection-allowed-namespaces: "dev,staging,prod" # Control destination namespaces
|
|
# reflector.v1.k8s.emberstack.com/reflection-auto-namespaces: "dev,staging,prod" # Control auto-reflection namespaces
|
|
dnsNames:
|
|
- "mnke.org"
|
|
- "*.mnke.org"
|
|
- "*.home.mnke.org"
|
|
- "*.dolo.mnke.org"
|
|
- "*.jodye.mnke.org"
|
|
- "*.web.jodye.mnke.org"
|
|
commonName: "*.mnke.org"
|
|
issuerRef:
|
|
name: le-cf-issuer
|
|
kind: ClusterIssuer
|