| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 |
- resource "kubernetes_namespace" "certmanager" {
- depends_on = [
- time_sleep.wait_for_kubernetes
- ]
- metadata {
- name = "certmanager"
- }
- }
- resource "helm_release" "certmanager" {
- depends_on = [
- kubernetes_namespace.certmanager
- ]
- name = "certmanager"
- namespace = "certmanager"
- repository = "https://charts.jetstack.io"
- chart = "cert-manager"
- # Install Kubernetes CRDs
- set {
- name = "installCRDs"
- value = "true"
- }
- }
- resource "time_sleep" "wait_for_certmanager" {
- depends_on = [
- helm_release.certmanager
- ]
- create_duration = "10s"
- }
- # Create a ClusterIssuer
- resource "kubectl_manifest" "cloudflare_prod" {
- depends_on = [
- time_sleep.wait_for_certmanager
- ]
- # TODO: add your mail address according to your configuration and API authentication settings!
- # ---
- yaml_body = <<YAML
- apiVersion: cert-manager.io/v1
- kind: ClusterIssuer
- metadata:
- name: cloudflare-prod
- spec:
- acme:
- email: your-mail-address
- server: https://acme-v02.api.letsencrypt.org/directory
- privateKeySecretRef:
- name: cloudflare-prod-account-key
- solvers:
- - dns01:
- cloudflare:
- email: your-mail-address
- apiKeySecretRef:
- name: cloudflare-api-key-secret
- key: api-key
- YAML
- }
- resource "time_sleep" "wait_for_clusterissuer" {
- depends_on = [
- kubectl_manifest.cloudflare_prod
- ]
- create_duration = "30s"
- }
|
