cert-manager/koti-ca.yaml (view raw)
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 |
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: koti-ca
namespace: default
spec:
isCA: true
commonName: koti-ca
secretName: koti-ca
duration: 87600h # 10 years
renewBefore: 24h
privateKey:
algorithm: ECDSA
size: 256
issuerRef:
name: root-issuer
kind: Issuer
group: cert-manager.io
---
apiVersion: cert-manager.io/v1
kind: Issuer
metadata:
name: root-issuer
namespace: default
spec:
selfSigned: {}
|