ungleich-public/ungleich-k8s
6
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

++readme

Browse source
This commit is contained in:
Nico Schottelius 2021-06-18 22:32:13 +02:00
parent 2c303122fb
commit 2b6fa07294
2 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
apps/nginx-certbot/README.md
View file

@ -1,5 +1,13 @@
## nginx service for getting letsencrypt certificates ## nginx service for getting letsencrypt certificates
Get real letsencrypt certificates in IPv6 based clusters.
### Architecture ### Architecture
* nginx/port 80 serves only the root for letsencrypt * nginx/port 80 serves only the root for letsencrypt
* nginx/port 443 crashes until the cert is there
* A job (certbot) gets the cert
## Missing bits
* cronjob for renewal

2
apps/nginx-certbot/base/deployment.yaml
View file

@ -145,7 +145,7 @@ spec:
- /usr/share/nginx/html - /usr/share/nginx/html
- --domain - --domain
- 'tls1.default.svc.c2.k8s.ooo' - 'tls1.default.svc.c2.k8s.ooo'
- --staging # - --staging
volumeMounts: volumeMounts:
- name: etcletsencrypt - name: etcletsencrypt
mountPath: "/etc/letsencrypt" mountPath: "/etc/letsencrypt"