Installer: certificate issuer
diff --git a/charts/certificate-issuer/templates/private.yaml b/charts/certificate-issuer/templates/private.yaml
new file mode 100644
index 0000000..1b5c06d
--- /dev/null
+++ b/charts/certificate-issuer/templates/private.yaml
@@ -0,0 +1,33 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+ name: {{ .Values.private.name }}-bootstrap
+ namespace: {{ .Release.Namespace }}
+spec:
+ selfSigned: {}
+---
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+ name: {{ .Values.private.name }}-ca-root
+ namespace: {{ .Release.Namespace }}
+spec:
+ isCA: true
+ commonName: {{ .Values.private.name }}-ca-root
+ secretName: {{ .Values.private.name }}-ca-root
+ privateKey:
+ algorithm: ECDSA
+ size: 256
+ issuerRef:
+ name: {{ .Values.private.name }}-bootstrap
+ kind: ClusterIssuer
+ group: cert-manager.io
+---
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+ name: {{ .Values.private.name }}
+ namespace: {{ .Release.Namespace }}
+spec:
+ ca:
+ secretName: {{ .Values.private.name }}-ca-root
diff --git a/charts/certificate-issuer/templates/public.yaml b/charts/certificate-issuer/templates/public.yaml
new file mode 100644
index 0000000..4dbf6f7
--- /dev/null
+++ b/charts/certificate-issuer/templates/public.yaml
@@ -0,0 +1,16 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+ name: {{ .Values.public.name }}
+ namespace: {{ .Release.Namespace }}
+spec:
+ acme:
+ server: {{ .Values.public.server }}
+ email: {{ .Values.public.contactEmail }}
+ privateKeySecretRef:
+ name: cluster-issuer-{{ .Values.public.name }}-account-key
+ solvers:
+ - selector: {}
+ http01:
+ ingress:
+ class: {{ .Values.public.ingressClass }}