alidns-webhook icon indicating copy to clipboard operation
alidns-webhook copied to clipboard

Published 20 hours ago verified publisher icon pragkent

The third-level domain name wildcard certificate does not work

Open qingfengfenga opened this issue 4 years ago • 7 comments

The third-level wildcard domain name does not work, what should I do? Is it because Let's Encrypt does not support it?

image

Example:

*.xxx.xxx.com

qingfengfenga avatar Sep 27 '21 08:09 qingfengfenga

Let's Encrypt does support it, we have third-level wildcard domain certificates signed by Let's Encrypt.

mayocream avatar Nov 09 '21 03:11 mayocream

@qingfengfenga add more dnsNames in the cluster issuer

dnsNames:
  - xxx.com
  - xxx.xxx.com
  - '*.xxx.com'
  - '*.xxx.xxx.com'

and create certificate for the third-level wildcard domain with commonName and dnsNames as follows, it works

  commonName: 'xxx.xxx.com'
  dnsNames:
  - xxx.xxx.com
  - '*.xxx.xxx.com'

basilhe avatar Apr 16 '22 23:04 basilhe

I also encountered this problem. Here are some of my configurations:

spec:
  dnsNames:
  - xx.vip
  - '*.xx.vip'
  - '*.ws.xx.vip'
  issuerRef:
    kind: ClusterIssuer
    name: aliyun
  secretName: https-certificates

Learntotolearn avatar Sep 01 '22 03:09 Learntotolearn

From @basilhe This is my configuration format, which can be used normally in my environment. I hope it can help you

spec:
  secretName: tls
  commonName: x.x.com
  dnsNames:
  - x.x.com
  - "*.x.x.com"
  issuerRef:
    name: letsencrypt-prod
    kind: ClusterIssuer

qingfengfenga avatar Sep 01 '22 04:09 qingfengfenga

From @basilhe This is my configuration format, which can be used normally in my environment. I hope it can help you

spec:
  secretName: tls
  commonName: x.x.com
  dnsNames:
  - x.x.com
  - "*.x.x.com"
  issuerRef:
    name: letsencrypt-prod
    kind: ClusterIssuer

Thank you very much. Can you tell me the meaning of the commonName field? Or tell me where to see the meaning of all fields. Thank you.

Learntotolearn avatar Sep 01 '22 04:09 Learntotolearn

From @basilhe This is my configuration format, which can be used normally in my environment. I hope it can help you

spec:
  secretName: tls
  commonName: x.x.com
  dnsNames:
  - x.x.com
  - "*.x.x.com"
  issuerRef:
    name: letsencrypt-prod
    kind: ClusterIssuer

Thank you very much. Can you tell me the meaning of the commonName field? Or tell me where to see the meaning of all fields. Thank you.

You can find relevant information in the documentation of cert manager

https://cert-manager.io/docs/reference/api-docs/#acme.cert-manager.io/v1.Order

qingfengfenga avatar Sep 01 '22 06:09 qingfengfenga

Thank you.

------------------ 原始邮件 ------------------ 发件人: "pragkent/alidns-webhook" @.>; 发送时间: 2022年9月1日(星期四) 下午2:23 @.>; @.@.>; 主题: Re: [pragkent/alidns-webhook] The third-level domain name wildcard certificate does not work (#18)

From @basilhe This is my configuration format, which can be used normally in my environment. I hope it can help you spec: secretName: tls commonName: x.x.com dnsNames: - x.x.com - "*.x.x.com" issuerRef: name: letsencrypt-prod kind: ClusterIssuer
Thank you very much. Can you tell me the meaning of the commonName field? Or tell me where to see the meaning of all fields. Thank you.

You can find relevant information in the documentation of cert manager

https://cert-manager.io/docs/reference/api-docs/#acme.cert-manager.io/v1.Order

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you commented.Message ID: @.***>

Learntotolearn avatar Sep 01 '22 06:09 Learntotolearn