search

jetstack / kube-lego

DEPRECATED: Automatically request certificates for Kubernetes Ingress resources from Let's Encrypt
Apache License 2.0
2.16k stars 267 forks source link

Multiple Kubernetes clusters sharing domain names #45

Open eljasala opened 8 years ago

eljasala commented 8 years ago

Are there any plans on supporting multiple clusters hosting same domain? In our case we have Kubernetes cluster(s) in multiple regions and use DNS-based for traffic routing. This has the issue that only single cluster would be able to obtain the certificate with the current kube-lego integration.

I'm currently writing a patch that allows kube-lego to pass-thru the challenge request to other clusters (query DNS for list of the clusters (a bit of torn between SRV and A records) & try to retrieve the challenge response from each. If anyone returns 200, return that to the client). Is this design something that could be upstreamed or is this something that's should to be addressed in some other way/simply not in the scope of the project?

podollb commented 7 years ago

Any updates on this? We have the same issue...

benlangfeld commented 6 years ago

I think cluster federation is the answer here, no?