search

cert-manager / webhook-example

A cert-manager sample repository for creating an ACME DNS01 solver webhook
Apache License 2.0
102 stars 405 forks source link

Question: When the Present function is called #69

Closed Appendme closed 3 months ago

Appendme commented 4 months ago

My webhook doesn't work if there are no _acme-challenge TXT records in the DNS record initially. Cert-manager constantly tries to get this entry with this message until I manually add the _acme-challenge entry with any value.

When querying the SOA record for the domain '_acme-challenge.kube.example.com.' using nameservers [10.96.0.10: ││ 53], rcode was expected to be 'NOERROR' or 'NXDOMAIN', but got 'SERVFAIL'" logger="cert-manager.challenges" key="cert-manager/wildcard-kube-example-com-2-3963891295-1304023134

The solution to my problem, as I see it, is to call the Present function when starting the certificate сhallenges, but the call only happens if I add the entry _acme-challenge manually with any value

Appendme commented 3 months ago

Apparently it was necessary to add extraArgs with the value dns01-recursive-nameservers-only and dns01-recursive-nameservers to the helm parameters of the cert-manager chart