From 82fdf455e54387eb6ff58c48e67788484358a3a3 Mon Sep 17 00:00:00 2001 From: "Dustin C. Hatch" Date: Thu, 22 Jun 2023 09:49:12 -0500 Subject: [PATCH] cert-manager: Add certificate HLC Hatch Learning Center has several domains; Tabitha couldn't decide which she liked best :) At present, they all resolve to the same website, with _hatchlearningcenter.org_ as the canonical name. --- cert-manager/cert-exporter.yaml | 6 ++++++ cert-manager/certificates.yaml | 28 ++++++++++++++++++++++++++++ 2 files changed, 34 insertions(+) diff --git a/cert-manager/cert-exporter.yaml b/cert-manager/cert-exporter.yaml index a4b780d..89f3005 100644 --- a/cert-manager/cert-exporter.yaml +++ b/cert-manager/cert-exporter.yaml @@ -48,6 +48,11 @@ data: key: certificates/dustinandtabitha.com.key cert: certificates/dustinandtabitha.com.crt bundle: certificates/dustinandtabitha.com.pem + - name: hlc-cert + namespace: default + key: certificates/hatchlearningcenter.org.key + cert: certificates/hatchlearningcenter.org.crt + bundle: certificates/hatchlearningcenter.org.pem known-hosts-command.ssh_config: | KnownHostsCommand /usr/bin/curl -fsL https://files.pyrocufflink.blue/ssh_known_hosts @@ -71,6 +76,7 @@ rules: - dcow-cert - chmod777-cert - dustinandtabitha-cert + - hlc-cert --- apiVersion: rbac.authorization.k8s.io/v1 diff --git a/cert-manager/certificates.yaml b/cert-manager/certificates.yaml index 39e3e3c..35e8847 100644 --- a/cert-manager/certificates.yaml +++ b/cert-manager/certificates.yaml @@ -126,3 +126,31 @@ spec: privateKey: algorithm: ECDSA rotationPolicy: Always + +--- +apiVersion: cert-manager.io/v1 +kind: Certificate +metadata: + name: hlc-cert +spec: + secretName: hlc-cert + dnsNames: + - hatchlearningcenter.org + - '*.hatchlearningcenter.org' + - hatchlearningcenter.com + - '*.hatchlearningcenter.com' + - hlckc.org + - '*.hlckc.org' + - hlckc.com + - '*.hlckc.com' + - hlcks.org + - '*.hlcks.org' + - hlcks.com + - '*.hlcks.com' + issuerRef: + group: cert-manager.io + kind: ClusterIssuer + name: zerossl + privateKey: + algorithm: ECDSA + rotationPolicy: Always