Skip to content

tomdoherty/adssl-issuer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
api/v1alpha2
api/v1alpha2
 
 
config
config
 
 
controllers
controllers
 
 
hack
hack
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
PROJECT
PROJECT
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

adssl-issuer

adssl-issuer is a kubernetes operator that provides a cert-manager Issuer for Active Directory SSL certificates. Certificates are requested from AD via the adssl library

Install

make docker-build docker-push IMG=adssl-operator:v0.1.0
make deploy IMG=adssl-operator:v0.1.0

Usage

Create a secret for the Active Directory password

kubectl create secret generic adsslissuer-secret \
  --from-literal=password=t0p-s3cret

Configure AdsslIssuer

---
apiVersion: certmanager.tomdoherty.io/v1alpha2
kind: AdsslIssuer
metadata:
  name: adsslissuer-sample
spec:
  url: https://adssl.example.com
  user: tom
  passwordRef:
    name: adsslissuer-secret
    key: password

Request a Certificate as normal

apiVersion: cert-manager.io/v1alpha2
kind: Certificate
metadata:
  name: kafka-tls
spec:
  # The secret name to store the signed certificate
  secretName: kafka-tls-secret
  # Common Name
  commonName: kafka
  # DNS SAN
  dnsNames:
    - kafka-0
  # IP Address SAN
  ipAddresses:
    - "127.0.0.1"
  # Duration of the certificate
  duration: 24h
  # Renew 8 hours before the certificate expiration
  renewBefore: 8h
  # The reference to the AdsslIssuer issuer
  issuerRef:
    group: certmanager.tomdoherty.io
    kind: CertificateRequest
    name: adsslissuer-sample

About

No description, website, or topics provided.

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages