all repos — infra @ 6dbf81a6658c163bec6fe01f4379ecb90582387a

infrastructure manifests and setup notes

cert-manager/koti-ca.yaml (view raw)

 1apiVersion: cert-manager.io/v1
 2kind: Certificate
 3metadata:
 4  name: koti-ca
 5  namespace: default
 6spec:
 7  isCA: true
 8  commonName: koti-ca
 9  secretName: koti-ca
10  duration: 87600h # 10 years
11  renewBefore: 24h
12  privateKey:
13    algorithm: ECDSA
14    size: 256
15  issuerRef:
16    name: root-issuer
17    kind: Issuer
18    group: cert-manager.io
19---
20apiVersion: cert-manager.io/v1
21kind: Issuer
22metadata:
23  name: root-issuer
24  namespace: default
25spec:
26  selfSigned: {}