search

guerzon / vaultwarden

Helm chart for Vaultwarden, the (unofficial) Bitwarden-compatible server written in Rust, formerly known as bitwarden_rs
MIT License
151 stars 72 forks source link

How to configure SSL with cert-manager #123

Closed PedroAugustoRamalhoDuarte closed 1 month ago

PedroAugustoRamalhoDuarte commented 1 month ago

Thanks for this helm chart it helps a lot

I am trying to setup nginx + cert-manager, is there any support for this feature?

santiagon610 commented 1 month ago

Yep, it all depends on how your cluster uses cert-manager, but generally it's done with annotations on the ingress.

In my case, it looks something like this:

ingress:
  enabled: true
  class: "nginx"
  hostname: "vault.example.com"
  nginxIngressAnnotations: false
  additionalAnnotations:
    cert-manager.io/cluster-issuer: "letsencrypt-prod" # this is the ClusterIssuer that i have cert-manager exposing
    nginx.ingress.kubernetes.io/proxy-body-size: "500m" # this is to allow large uploads for Vaultwarden Send
  tlsSecret: vaultwarden-tls

You'll want to use the appropriate ingressClass for your ingress controller, and the appropriate annotation for the issuer or clusterIssuer.

PedroAugustoRamalhoDuarte commented 1 month ago

Thanks @santiagon610 this configs works for me!!