kubernetes/step-ca/kustomization.yaml

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization

namespace: step-ca

labels:
- pairs:
    app.kubernetes.io/instance: step-ca

resources:
- namespace.yaml
- step-ca.yaml
- secrets.yaml

configMapGenerator:
- name: step-ca-config
  files:
  - ca.json

- name: step-ca-certs
  files:
  - root_ca.crt
  - intermediate_ca.crt

patches:
- patch: |
    apiVersion: apps/v1
    kind: StatefulSet
    metadata:
      name: step-ca
      namespace: step-ca
    spec:
      template:
        spec:
          dnsConfig:
            nameservers:
            - 172.30.0.1
          dnsPolicy: None