cert-manager-webhook-scaleway

command module
v0.0.0-...-89a34fa Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 26, 2020 License: Apache-2.0 Imports: 11 Imported by: 0

README

ACME webhook for Scaleway DNS

This webhook allows Scaleway users to use the DNS01 challenge solving when using cert-manager in kubernetes.

Installation

To install with helm, run:

$ git clone https://github.com/touchifyapp/cert-manager-webhook-scaleway.git
$ cd cert-manager-webhook-scaleway/deploy/cert-manager-webhook-scaleway
$ helm install --name cert-manager-webhook-scaleway .

Without helm, use:

$ make rendered-manifest.yaml
$ kubectl apply -f _out/rendered-manifest.yaml

Configuration

Generate your secret key

Login to your Scaleway account and create a token from the credentials page. A secret_key and an access_key will be displayed on your screen, the secret_key will be used in your kubernetes secret.

Reference: https://www.scaleway.com/docs/generate-an-api-token/

Create a kubernetes secret
apiVersion: v1
kind: Secret
metadata:
  name: scaleway-secret-key
type: Opaque
stringData:
  token: SECRET_KEY_FROM_SCALEWAY
Create a new Issuer/ClusterIssuer
apiVersion: cert-manager.io/v1
kind: Issuer
metadata:
  name: letsencrypt-scaleway
  namespace: default
spec:
  acme:
    server: https://acme-staging-v02.api.letsencrypt.org/directory
    email: certmaster@company.com
    privateKeySecretRef:
      name: letsencrypt-scaleway-account-key
    solvers:
    - dns01:
        webhook:
          groupName: acme.company.com
          solverName: scaleway
          config:
            organizationId: 12345678-1234-1234-1234-123456789012
            secretKeySecretRef:
              name: scaleway-secret-key
              key: token
Testing your issuer
apiVersion: cert-manager.io/v1alpha2
kind: Certificate
metadata:
  name: test-letsencrypt-crt
  namespace: default
spec:
  secretName: company-com-tls
  commonName: company.com
  issuerRef:
    name: letsencrypt-scaleway
    kind: Issuer
  dnsNames:
  - company.com
  - www.company.com

Contributing

Running the test suite

First, you need to provide your own secret key:

  1. Generate your secret key as explained below (more info)
  2. Fill in the appropriate values in testdata/scaleway-solver/secretkey.yml and testdata/scaleway-solver/config.json

Then, you can run the test suite with:

$ TEST_ZONE_NAME=example.com. make verify

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
client
Package ScalewayDns provides primitives to interact the openapi HTTP API.
 Package ScalewayDns provides primitives to interact the openapi HTTP API.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.