32 lines
768 B
YAML
32 lines
768 B
YAML
apiVersion: cert-manager.io/v1
|
|
kind: ClusterIssuer
|
|
metadata:
|
|
name: zerossl
|
|
spec:
|
|
acme:
|
|
# ZeroSSL ACME server
|
|
server: https://acme.zerossl.com/v2/DV90
|
|
email: zerossl@strudelline.net
|
|
|
|
# name of a secret used to store the ACME account private key
|
|
privateKeySecretRef:
|
|
name: zerossl-prod
|
|
|
|
# for each cert-manager new EAB credencials are required
|
|
externalAccountBinding:
|
|
keyID: DvBIRvg60WXIE9lIg-6g3Q
|
|
keySecretRef:
|
|
name: zerossl-eab
|
|
key: key
|
|
|
|
# ACME DNS-01 provider configurations to verify domain
|
|
solvers:
|
|
- selector: {}
|
|
dns01:
|
|
cloudflare:
|
|
email: cloudflare@strudelline.net
|
|
apiTokenSecretRef:
|
|
name: cloudflare-api-token
|
|
key: api-token
|
|
|