From 119870e2a3af2da3367ea6887f856d6b4aa5ea66 Mon Sep 17 00:00:00 2001 From: Dreaded_X Date: Mon, 1 Dec 2025 03:03:16 +0100 Subject: [PATCH] feat: Added certificate for huizinga.dev --- clusters/testing/kustomization.yaml | 1 + configs/artifacts.yaml | 5 +++++ configs/certificates/namespace.yaml | 4 ++++ .../production/certificate-huizinga-dev.yaml | 14 ++++++++++++++ .../certificates/production/certificates.yaml | 17 +++++++++++++++++ .../certificates/production/kustomization.yaml | 5 +++++ .../staging/certificate-huizinga-dev.yaml | 14 ++++++++++++++ configs/certificates/staging/certificates.yaml | 17 +++++++++++++++++ configs/certificates/staging/kustomization.yaml | 5 +++++ 9 files changed, 82 insertions(+) create mode 100644 configs/certificates/namespace.yaml create mode 100644 configs/certificates/production/certificate-huizinga-dev.yaml create mode 100644 configs/certificates/production/certificates.yaml create mode 100644 configs/certificates/production/kustomization.yaml create mode 100644 configs/certificates/staging/certificate-huizinga-dev.yaml create mode 100644 configs/certificates/staging/certificates.yaml create mode 100644 configs/certificates/staging/kustomization.yaml diff --git a/clusters/testing/kustomization.yaml b/clusters/testing/kustomization.yaml index 2ee120c..a77d6ab 100644 --- a/clusters/testing/kustomization.yaml +++ b/clusters/testing/kustomization.yaml @@ -6,3 +6,4 @@ resources: - ../../controllers/cert-manager/cert-manager.yaml - ../../configs/artifacts.yaml - ../../configs/letsencrypt/letsencrypt.yaml + - ../../configs/certificates/staging/certificates.yaml diff --git a/configs/artifacts.yaml b/configs/artifacts.yaml index 0cde715..7b900a9 100644 --- a/configs/artifacts.yaml +++ b/configs/artifacts.yaml @@ -14,3 +14,8 @@ spec: copy: - from: "@foundation/configs/letsencrypt/**" to: "@artifact/" + - name: certificates + originRevision: "@foundation" + copy: + - from: "@foundation/configs/certificates/**" + to: "@artifact/" diff --git a/configs/certificates/namespace.yaml b/configs/certificates/namespace.yaml new file mode 100644 index 0000000..4c65f83 --- /dev/null +++ b/configs/certificates/namespace.yaml @@ -0,0 +1,4 @@ +apiVersion: v1 +kind: Namespace +metadata: + name: certificates diff --git a/configs/certificates/production/certificate-huizinga-dev.yaml b/configs/certificates/production/certificate-huizinga-dev.yaml new file mode 100644 index 0000000..2e68b59 --- /dev/null +++ b/configs/certificates/production/certificate-huizinga-dev.yaml @@ -0,0 +1,14 @@ +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: huizinga-dev + namespace: certificates +spec: + secretName: huizinga-dev-tls + issuerRef: + name: letsencrypt + kind: ClusterIssuer + commonName: "huizinga.dev" + dnsNames: + - "huizinga.dev" + - "*.huizinga.dev" diff --git a/configs/certificates/production/certificates.yaml b/configs/certificates/production/certificates.yaml new file mode 100644 index 0000000..daf4c27 --- /dev/null +++ b/configs/certificates/production/certificates.yaml @@ -0,0 +1,17 @@ +apiVersion: kustomize.toolkit.fluxcd.io/v1 +kind: Kustomization +metadata: + name: certificates + namespace: flux-system +spec: + interval: 1h + retryInterval: 2m + timeout: 5m + dependsOn: + - name: letsencrypt + sourceRef: + kind: ExternalArtifact + name: certificates + path: ./production + prune: true + wait: true diff --git a/configs/certificates/production/kustomization.yaml b/configs/certificates/production/kustomization.yaml new file mode 100644 index 0000000..5f037e5 --- /dev/null +++ b/configs/certificates/production/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - ../namespace.yaml + - certificate-huizinga-dev.yaml diff --git a/configs/certificates/staging/certificate-huizinga-dev.yaml b/configs/certificates/staging/certificate-huizinga-dev.yaml new file mode 100644 index 0000000..e82e639 --- /dev/null +++ b/configs/certificates/staging/certificate-huizinga-dev.yaml @@ -0,0 +1,14 @@ +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: huizinga-dev + namespace: certificates +spec: + secretName: huizinga-dev-tls + issuerRef: + name: letsencrypt + kind: ClusterIssuer + commonName: "staging.huizinga.dev" + dnsNames: + - "staging.huizinga.dev" + - "*.staging.huizinga.dev" diff --git a/configs/certificates/staging/certificates.yaml b/configs/certificates/staging/certificates.yaml new file mode 100644 index 0000000..4048480 --- /dev/null +++ b/configs/certificates/staging/certificates.yaml @@ -0,0 +1,17 @@ +apiVersion: kustomize.toolkit.fluxcd.io/v1 +kind: Kustomization +metadata: + name: certificates + namespace: flux-system +spec: + interval: 1h + retryInterval: 2m + timeout: 5m + dependsOn: + - name: letsencrypt + sourceRef: + kind: ExternalArtifact + name: certificates + path: ./staging + prune: true + wait: true diff --git a/configs/certificates/staging/kustomization.yaml b/configs/certificates/staging/kustomization.yaml new file mode 100644 index 0000000..5f037e5 --- /dev/null +++ b/configs/certificates/staging/kustomization.yaml @@ -0,0 +1,5 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +resources: + - ../namespace.yaml + - certificate-huizinga-dev.yaml