Public ungleich kubernetes repository
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

1.1 KiB


Allow a service to acquire a DNS name and a certificate for the DNS name.

Potential flow

  • A deployment (?) with annotations domain: is created
  • The DNS entry pointing to the Service is created
  • The certifcatce for is requested/stored
  • All pods get access to the certificate, serve https

Certificate for a service [sketch]

  • Have one pod listening on port 80 / doing certbot from time to time
    • The cert is stored as a configmap (?) or other volume
  • The application containers read the certificate
    • ... and are restarted on ... ??
  • Job+Cronjob could do the job
  • Deletion of certificate?
    • With the volume/configmap
  • Port 80 of the IP nginx with certbot webroot
    • webroot shared with certbot container


Letsencrypt / Certificates for services [WIP]

  • Maybe using certmanager
kubectl apply -f