Helm/Cert Manager: Difference between revisions
Jump to navigation
Jump to search
(Created page with " helm repo add jetstack https://charts.jetstack.io helm repo update && helm repo list ==Config== <syntaxhighlight lang="properties"> export KUBECONFIG="${HOME}/.kube/dev-kubeconfig.yaml" export KUBECONFIG="${HOME}/.kube/gcp-kubeconfig.yaml" export KUBECONFIG="${HOME}/.kube/config" </syntaxhighlight> ==Install== {| |valign='top'| <syntaxhighlight lang="yaml"> kubectl create namespace cert-manager helm show values jetstack/cert-manager --version v1.15.1|less helm instal...") |
|||
| Line 15: | Line 15: | ||
kubectl create namespace cert-manager | kubectl create namespace cert-manager | ||
helm show values jetstack/cert-manager --version v1.15.1|less | helm show values jetstack/cert-manager --version v1.15.1|less | ||
helm install -n cert-manager cert-manager jetstack/cert-manager --version v1.15.1 | cat <<YML | helm install -n cert-manager cert-manager jetstack/cert-manager --version v1.15.1 -f - | ||
crds: | |||
enabled: true | |||
ingressShim: | |||
defaultIssuerName: letsencrypt-prod | |||
defaultIssuerKind: ClusterIssuer | |||
prometheus: | |||
enabled: false | |||
webhook: | |||
timeoutSeconds: 30 | |||
YML | |||
</syntaxhighlight> | </syntaxhighlight> | ||
|} | |} | ||
Revision as of 05:48, 31 July 2024
helm repo add jetstack https://charts.jetstack.io helm repo update && helm repo list
Config
export KUBECONFIG="${HOME}/.kube/dev-kubeconfig.yaml"
export KUBECONFIG="${HOME}/.kube/gcp-kubeconfig.yaml"
export KUBECONFIG="${HOME}/.kube/config"
Install
kubectl create namespace cert-manager
helm show values jetstack/cert-manager --version v1.15.1|less
cat <<YML | helm install -n cert-manager cert-manager jetstack/cert-manager --version v1.15.1 -f -
crds:
enabled: true
ingressShim:
defaultIssuerName: letsencrypt-prod
defaultIssuerKind: ClusterIssuer
prometheus:
enabled: false
webhook:
timeoutSeconds: 30
YML
|
Uninstall
helm uninstall -n cert-manager cert-manager
kubectl delete namespace cert-manager
Playground
helm install -n cert-manager cert-manager jetstack/cert-manager --version v1.14.7
helm upgrade -n cert-manager -i cert-manager jetstack/cert-manager --version v1.15.1
helm show values jetstack/cert-manager --version v1.15.1|less
| |
|
| |
export CERT_POD_NAME=$(kubectl -n cert-manager get pod -l 'app.kubernetes.io/name=cert-manager' -o json|jq -r '.items[0].metadata.name')
export CA_POD_NAME=$(kubectl -n cert-manager get pod -l 'app.kubernetes.io/name=cainjector' -o json|jq -r '.items[0].metadata.name')
export HOOK_POD_NAME=$(kubectl -n cert-manager get pod -l 'app.kubernetes.io/name=webhook' -o json|jq -r '.items[0].metadata.name')
kubectl exec -n cert-manager -it svc/cert-manager-webhook -c cert-manager-webhook -- bash
kubectl exec -n cert-manager -it svc/cert-manager -c cert-manager-controller -- bash
kubectl exec -n cert-manager -it svc/cert-manager -c init -- bash
kubectl -n cert-manager exec -it ${CERT_POD_NAME} -- bash
| |
|
| |
kubectl config --kubeconfig=${HOME}/.kube/aws-kubeconfig.yaml view --flatten
kubectl config --kubeconfig=${HOME}/.kube/dev-kubeconfig.yaml view --flatten
kubectl config --kubeconfig=${HOME}/.kube/gcp-kubeconfig.yaml view --flatten
kubectl config --kubeconfig=${HOME}/.kube/config view --flatten
| |
|
| |
kubectl delete all --all -n cert-manager
kubectl delete ing --all -n cert-manager
kubectl delete sts --all -n cert-manager
|
kubectl delete svc --all -n cert-manager
kubectl delete pvc --all -n cert-manager
kubectl delete pv --all -n cert-manager
|
|
| |
kubectl rollout -n cert-manager history deploy cert-manager
kubectl rollout -n cert-manager restart deploy cert-manager
kubectl rollout -n cert-manager status deploy cert-manager
|
kubectl logs -n cert-manager -f ${CERT_POD_NAME}
kubectl logs -n cert-manager -f ${HOOK_POD_NAME}
kubectl logs -n cert-manager -f ${CA_POD_NAME}
|
References
|
| ||
|
| ||