Open jochumdev opened 1 year ago
You could use a kubernetes cronjob to do it and maybe add a compare so it doesn't replace the secret unless it has actually changed.
Not sure what I can do in the traefik-acme
tool to make this easier, we could probably bundle it with the binary in the docker container and make a sub container that is based on a distro (deb or alpine) ?
Finaly had some time to work on that.
Result is here: https://github.com/jochumdev/acmejson-to-secret
Feel free to copy&paste whatever you want: I have no compare yet.
I added cert compare.
I've written a simple script that export's certifcates from acme.json to kubernetes certificates.
I use it with:
ACME_DOMAINS is in the format:
$domain:$namespace/$name;$domain:$namespace/$name;$domain:$namespace/$name
Next step is to write a sidecar container for Traefik or a Job to run this.