cert-operator icon indicating copy to clipboard operation
cert-operator copied to clipboard

Published 20 hours ago verified publisher icon redhat-cop

Integrate with Cert Manager

Open etsauer opened this issue 6 years ago • 5 comments

We would like to explore how we might use this project as a wrapper around Jetstack Cert Manager. This project is gaining a lot of traction, even getting PKI vendors to contribute plugins. what they don't have is support for OpenShift, specifically routes.

etsauer avatar Feb 20 '19 16:02 etsauer

@sysmatrix1 @raffaelespazzoli @sabre1041

etsauer avatar Feb 20 '19 16:02 etsauer

I created a OCP helm chart for cert manager. changed only a few things from the original. I mainly eliminated the validation admission webhook which complicated things too much in my opinion. you can find it here: https://github.com/raffaelespazzoli/openshift-cert-manager

raffaelespazzoli avatar Feb 21 '19 01:02 raffaelespazzoli

I did some noodling on how this might work, and scratched out a workflow:

cert-op-flow

etsauer avatar Feb 21 '19 22:02 etsauer

I suggest watching on the created secret rather than on the certificate CR. That way you get notified also when certificates are renewed.

raffaelespazzoli avatar Feb 22 '19 14:02 raffaelespazzoli

@etsauer @raffaelespazzoli can we start a google doc to include these design discussions?

sabre1041 avatar Feb 22 '19 14:02 sabre1041