infra/foundation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor: Deduplicated certificates manifests

Browse Source
This commit is contained in:
Dreaded_X
2025-12-02 00:39:39 +01:00
parent 775934660c
commit 2d2573f2fa
10 changed files with 27 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
clusters/testing/kustomization.yaml
View File

@@ -6,4 +6,4 @@ resources:
- ../../controllers/cert-manager/cert-manager.yaml - ../../controllers/cert-manager/cert-manager.yaml
- ../../configs/artifacts.yaml - ../../configs/artifacts.yaml
- ../../configs/letsencrypt/letsencrypt.yaml - ../../configs/letsencrypt/letsencrypt.yaml
- ../../configs/certificates/staging/certificates.yaml - ../../configs/certificates/certificates.yaml

10
configs/certificates/base/certificate-huizinga-dev.yaml Normal file
View File

@@ -0,0 +1,10 @@
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: huizinga-dev
namespace: certificates
spec:
secretName: huizinga-dev-tls
issuerRef:
name: letsencrypt
kind: ClusterIssuer

5
configs/certificates/base/kustomization.yaml Normal file
View File

@@ -0,0 +1,5 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- namespace.yaml
- certificate-huizinga-dev.yaml

0
configs/certificates/namespace.yaml → configs/certificates/base/namespace.yaml
View File

2
configs/certificates/production/certificates.yaml → configs/certificates/certificates.yaml
View File

@@ -12,6 +12,6 @@ spec:
sourceRef: sourceRef:
kind: ExternalArtifact kind: ExternalArtifact
name: certificates name: certificates
path: ./production path: ./${cluster_env}
prune: true prune: true
wait: true wait: true

4
configs/certificates/production/certificate-huizinga-dev.yaml
View File

@@ -4,10 +4,6 @@ metadata:
name: huizinga-dev name: huizinga-dev
namespace: certificates namespace: certificates
spec: spec:
secretName: huizinga-dev-tls
issuerRef:
name: letsencrypt
kind: ClusterIssuer
commonName: "huizinga.dev" commonName: "huizinga.dev"
dnsNames: dnsNames:
- "huizinga.dev" - "huizinga.dev"

7
configs/certificates/production/kustomization.yaml
View File

@@ -1,5 +1,8 @@
apiVersion: kustomize.config.k8s.io/v1beta1 apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ../namespace.yaml - ../base
- certificate-huizinga-dev.yaml patches:
- path: certificate-huizinga-dev.yaml
target:
kind: Certificate

4
configs/certificates/staging/certificate-huizinga-dev.yaml
View File

@@ -4,10 +4,6 @@ metadata:
name: huizinga-dev name: huizinga-dev
namespace: certificates namespace: certificates
spec: spec:
secretName: huizinga-dev-tls
issuerRef:
name: letsencrypt
kind: ClusterIssuer
commonName: "staging.huizinga.dev" commonName: "staging.huizinga.dev"
dnsNames: dnsNames:
- "staging.huizinga.dev" - "staging.huizinga.dev"

17
configs/certificates/staging/certificates.yaml
View File

@@ -1,17 +0,0 @@
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: certificates
namespace: flux-system
spec:
interval: 1h
retryInterval: 2m
timeout: 5m
dependsOn:
- name: letsencrypt
sourceRef:
kind: ExternalArtifact
name: certificates
path: ./staging
prune: true
wait: true

7
configs/certificates/staging/kustomization.yaml
View File

@@ -1,5 +1,8 @@
apiVersion: kustomize.config.k8s.io/v1beta1 apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ../namespace.yaml - ../base
- certificate-huizinga-dev.yaml patches:
- path: certificate-huizinga-dev.yaml
target:
kind: Certificate