Open zogot opened 6 months ago
Look into external-dns and the use with Cloudflare and Pihole. Configure in a way that I can mark an ingress as 'public' and only then it adds to Cloudflare with the External IP
Trying to use 1password service accounts to have the cloudflare api key provided via 1password but unfortunately, external-dns doesn't supply a 'cmd' argument in the deployments and according to the documentation of 1password secret injector:
To inject secrets, the Pod you're looking to inject into must have a command value defined in its Deployment or Pod spec. The 1Password Secrets Injector works by mutating the this value on initilization, and as such a command is needed to be mutated. If the deployments you're using aren't designed to have command specified in the deployment, then the 1Password Kubernetes Operator may be a better fit for your use case.
so, shame, have to create manual secrets with the values taken from 1password
Reference: https://cert-manager.io/docs/installation/helm/