README
¶
cert-manager webhook for anx.se
cert-manager ACME DNS01 webhook provider for anx.se
Prequesites
The following components needs to be already installed on a Kubernetes cluster:
Your domain needs to have Dynamic DNS support and an api key from https://dyn.anx.se.
Installation
- Create a Kubernetes secret which will hold your joker DynDNS authentication credentials (base64 representation):
cat <<EOF | kubectl apply -f -
apiVersion: v1
kind: Secret
metadata:
name: anxdns-secret
namespace: <namespace where cert-manager provider resides>
data:
apiKey: <api_key>
EOF
- Clone the github repository:
git clone https://github.com/egeback/cert-manager-webhook-anx.git
- Install the Helm chart with:
helm upgrade --install cert-manager-webhook-anxdns --namespace cert-manager deploy/anxdns-webhook
- Create a certificate issuer with the letsencrypt staging ca for testing purposes (you must insert your e-mail address):
cat <<EOF | kubectl apply -f -
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-staging-dns01
spec:
acme:
# Change to your letsencrypt email
email: <your email>
server: https://acme-staging-v02.api.letsencrypt.org/directory
privateKeySecretRef:
name: letsencrypt-staging-account-key
solvers:
- dns01:
webhook:
groupName: acme.anx.se
solverName: anxdns
config:
baseURL: https://dyn.anx.se/api/dns/
apiKeySecretRef:
name: anxdns-secret
key: apiKey
EOF
- Issue a test certificate (replace the test urls in here):
cat <<EOF | kubectl apply -f -
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: example-tls
spec:
secretName: example-com-tls
commonName: example.com
dnsNames:
- example.com
- "*.example.com"
issuerRef:
name: letsencrypt-staging-dns01
kind: ClusterIssuer
EOF
Documentation
¶
There is no documentation for this package.
Source Files
Click to show internal directories.
Click to hide internal directories.