Closed mpiscaer closed 1 year ago
This can be done by creating a secret and overriding openstack_helm_ingress_secret_name
:
I created a secret with kubectl -n openstack create secret tls cert-tls --key="tls.key" --cert="tls.crt"
and changed openstack_helm_ingress_secret_name: cert-tls
After running the playbooks the system deletes and recreates a new secret.
All ingresses have explicit issuer spec in their annotation regardless of certificate type. It will trigger certificate issue on cert-manager side and user's custom wildcard cert secret is overridden by generated one.
Need to make that annotation configurable.
this is now possible by using this:
I would like to use a wildcard certificate to have all the service running.
Like