57 lines
No EOL
1.7 KiB
YAML
57 lines
No EOL
1.7 KiB
YAML
# Copyright 2019 Google LLC
|
|
#
|
|
# Licensed under the the Apache License v2.0 with LLVM Exceptions (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# https://llvm.org/LICENSE.txt
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
# based on documentation on
|
|
# https://github.com/jetstack/cert-manager/blob/master/docs/tutorials/acme/quick-start/index.rst
|
|
|
|
apiVersion: cert-manager.io/v1
|
|
kind: ClusterIssuer
|
|
metadata:
|
|
name: letsencrypt-staging
|
|
spec:
|
|
acme:
|
|
server: https://acme-staging-v02.api.letsencrypt.org/directory
|
|
email: goncharov@google.com
|
|
privateKeySecretRef:
|
|
name: letsencrypt-staging
|
|
solvers:
|
|
- dns01:
|
|
cloudDNS:
|
|
# The ID of the GCP project
|
|
project: "llvm-premerge-checks"
|
|
# This is the secret used to access the service account
|
|
serviceAccountSecretRef:
|
|
name: clouddns-dns01-solver-svc-acct
|
|
key: key.json
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: ClusterIssuer
|
|
metadata:
|
|
name: letsencrypt-prod
|
|
spec:
|
|
acme:
|
|
server: https://acme-v02.api.letsencrypt.org/directory
|
|
email: goncharov@google.com
|
|
privateKeySecretRef:
|
|
name: letsencrypt-prod
|
|
solvers:
|
|
- dns01:
|
|
cloudDNS:
|
|
project: "llvm-premerge-checks"
|
|
serviceAccountSecretRef:
|
|
name: clouddns-dns01-solver-svc-acct
|
|
key: key.json
|
|
# - http01:
|
|
# ingress:
|
|
# class: gce |