{"id":22777124,"url":"https://github.com/cocreate-app/cocreate-cert-manager","last_synced_at":"2025-03-30T13:28:20.378Z","repository":{"id":111400367,"uuid":"317627535","full_name":"CoCreate-app/CoCreate-cert-manager","owner":"CoCreate-app","description":null,"archived":false,"fork":false,"pushed_at":"2020-12-01T22:16:37.000Z","size":155,"stargazers_count":1,"open_issues_count":0,"forks_count":1,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-02-05T15:17:23.327Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/CoCreate-app.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2020-12-01T18:09:47.000Z","updated_at":"2022-10-11T12:24:38.000Z","dependencies_parsed_at":"2023-05-18T15:34:29.216Z","dependency_job_id":null,"html_url":"https://github.com/CoCreate-app/CoCreate-cert-manager","commit_stats":{"total_commits":2,"total_committers":2,"mean_commits":1.0,"dds":0.5,"last_synced_commit":"56a269ebbf95142637787cbbd01a171737dca0b1"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":"CoCreate-app/CoCreate-boilerplate","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CoCreate-app%2FCoCreate-cert-manager","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CoCreate-app%2FCoCreate-cert-manager/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CoCreate-app%2FCoCreate-cert-manager/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CoCreate-app%2FCoCreate-cert-manager/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CoCreate-app","download_url":"https://codeload.github.com/CoCreate-app/CoCreate-cert-manager/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246323175,"owners_count":20758929,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-11T19:13:11.825Z","updated_at":"2025-03-30T13:28:20.344Z","avatar_url":"https://github.com/CoCreate-app.png","language":"Shell","readme":"![GitHub file size in bytes](https://img.shields.io/github/size/CoCreate-app/CoCreate-boilerplate/dist/CoCreate-boilerplate.min.js?label=minified%20size) \n![GitHub package.json version](https://img.shields.io/github/package-json/v/CoCreate-app/CoCreate-boilerplate)\n![GitHub](https://img.shields.io/github/license/CoCreate-app/CoCreate-boilerplate) \n![GitHub labels](https://img.shields.io/github/labels/CoCreate-app/CoCreate-boilerplate/help%20wanted)\n\n# CoCreate-cert-manager\nA cert\n\n![CoCreate](https://cdn.cocreate.app/logo.png)\n\n\nWhile writting this doc the cert-manager version is 1.1.0: \n\n\n- ### Installing cert manager.\n\n```\n\n$ kubectl apply -f https://github.com/jetstack/cert-manager/releases/download/v1.1.0/cert-manager.yaml\n\n\n*or*\n\n$ kubectl apply -f manifests/cert-manager.yaml\n```\n\n\n- ### Check if properly deployed:\n\n```\n$ kubectl get pods --namespace cert-manager\n\n\n\u003e ~/bharat/github/clones\u003e kubectl get pods --namespace cert-manager\nNAME                                      READY   STATUS    RESTARTS   AGE\ncert-manager-5597cff495-z5kdb             1/1     Running   0          109m\ncert-manager-cainjector-bd5f9c764-z48q8   1/1     Running   0          109m\ncert-manager-webhook-5f57f59fbc-nntvf     1/1     Running   0          109m\n```\n\n\n- ### Create a certificate ClusterIssuer object. \n\n\u003e If you want namespace specific then create Issuer instead of ClusterIssuer object.\n\n```\n$ kubectl apply -f manifests/cocreate_prod_issuer.yml\n\nclusterissuer.cert-manager.io/cocreate-letsencrypt-prod created\n\n```\n\n- ### Describe the cluster issuer\n\n```\n$ kubectl describe clusterissuer cocreate-letsencrypt-prod\n```\n\n- ### Modify ingress accordingly:\n\n    - Add ingress anotation:\n        ```\n        cert-manager.io/cluster-issuer: \"cocreate-letsencrypt-prod\"\n        ```\n\n    - Add tls in ingress spec\n        ```\n        tls:\n        - hosts:\n        - ws.cocreate.app\n        secretName: ws-tls-secret\n        ```\n\n- ### Basic Info gathering\n\n```\n\n\u003e ~/bharat/github/clones\u003e kubectl get clusterissuer\nNAME                        READY   AGE\ncocreate-letsencrypt-prod   True    43m\n\n\u003e ~/bharat/github/clones\u003e kubectl describe clusterissuer cocreate-letsencrypt-prod\nName:         cocreate-letsencrypt-prod\nNamespace:\nLabels:       \u003cnone\u003e\nAnnotations:  API Version:  cert-manager.io/v1\nKind:         ClusterIssuer\nMetadata:\n  Creation Timestamp:  2020-12-01T20:48:55Z\n  Generation:          2\n  Managed Fields:\n    API Version:  cert-manager.io/v1\n    Fields Type:  FieldsV1\n    fieldsV1:\n      f:metadata:\n        f:annotations:\n          .:\n          f:kubectl.kubernetes.io/last-applied-configuration:\n      f:spec:\n        .:\n        f:acme:\n          f:email:\n          f:privateKeySecretRef:\n            .:\n            f:name:\n          f:solvers:\n    Manager:      kubectl\n    Operation:    Update\n    Time:         2020-12-01T21:34:42Z\n    API Version:  cert-manager.io/v1\n    Fields Type:  FieldsV1\n    fieldsV1:\n      f:status:\n        .:\n        f:acme:\n          .:\n          f:lastRegisteredEmail:\n          f:uri:\n        f:conditions:\n    Manager:         controller\n    Operation:       Update\n    Time:            2020-12-01T21:34:43Z\n  Resource Version:  1888290\n  Self Link:         /apis/cert-manager.io/v1/clusterissuers/cocreate-letsencrypt-prod\n  UID:               0dd09703-7fb0-43c8-b6f5-8bf8531509ee\nSpec:\n  Acme:\n    Email:            admin@cocreate.app\n    Preferred Chain:\n    Private Key Secret Ref:\n      Name:  cocreate-letsencrypt-prod\n    Server:  https://acme-v02.api.letsencrypt.org/directory\n    Solvers:\n      http01:\n        Ingress:\n          Class:  nginx\nStatus:\n  Acme:\n    Last Registered Email:  admin@cocreate.app\n    Uri:                    https://acme-v02.api.letsencrypt.org/acme/acct/104676621\n  Conditions:\n    Last Transition Time:  2020-12-01T20:48:55Z\n    Message:               The ACME account was registered with the ACME server\n    Reason:                ACMEAccountRegistered\n    Status:                True\n    Type:                  Ready\nEvents:                    \u003cnone\u003e\n\n```\n\n- Getting  ingress,certificate,secret info\n\n```\n\u003e ~/bharat/github/clones\u003e kubectl describe ingress cocreate-ws-ingress\nName:             cocreate-ws-ingress\nNamespace:        default\nAddress:          18.206.219.104,34.207.216.116\nDefault backend:  default-http-backend:80 (\u003cerror: endpoints \"default-http-backend\" not found\u003e)\nTLS:\n  ws-tls-secret terminates ws.cocreate.app\nRules:\n  Host             Path  Backends\n  ----             ----  --------\n  ws.cocreate.app\n                   /   cocreate-ws-service:8081 (10.42.1.30:8081)\nAnnotations:       cert-manager.io/cluster-issuer: cocreate-letsencrypt-prod\n                   field.cattle.io/publicEndpoints:\n                     [{\"addresses\":[\"18.206.219.104\"],\"port\":443,\"protocol\":\"HTTPS\",\"serviceName\":\"default:cocreate-ws-service\",\"ingressName\":\"default:cocreate...\n                   meta.helm.sh/release-name: cocreatews-manifests\n                   meta.helm.sh/release-namespace: default\n                   objectset.rio.cattle.io/id: default-cocreatews-manifests\nEvents:\n  Type    Reason             Age                   From                      Message\n  ----    ------             ----                  ----                      -------\n  Normal  UPDATE             2m45s (x7 over 3d1h)  nginx-ingress-controller  Ingress default/cocreate-ws-ingress\n  Normal  UPDATE             2m45s (x7 over 3d1h)  nginx-ingress-controller  Ingress default/cocreate-ws-ingress\n  Normal  CreateCertificate  2m45s                 cert-manager              Successfully created Certificate \"ws-tls-secret\"\n\n\n\n\u003e ~/bharat/github/clones\u003e kubectl describe certificate ws-tls-secret\nName:         ws-tls-secret\nNamespace:    default\nLabels:       app.kubernetes.io/managed-by=Helm\n              objectset.rio.cattle.io/hash=9b7b409fc93ef02c6b701fa15758f4cb05e1a034\nAnnotations:  \u003cnone\u003e\nAPI Version:  cert-manager.io/v1\nKind:         Certificate\nMetadata:\n  Creation Timestamp:  2020-12-01T22:02:36Z\n  Generation:          1\n  Managed Fields:\n    API Version:  cert-manager.io/v1\n    Fields Type:  FieldsV1\n    fieldsV1:\n      f:metadata:\n        f:labels:\n          .:\n          f:app.kubernetes.io/managed-by:\n          f:objectset.rio.cattle.io/hash:\n        f:ownerReferences:\n          .:\n          k:{\"uid\":\"b6af7fbc-99c8-4c5b-8116-2144569e0286\"}:\n            .:\n            f:apiVersion:\n            f:blockOwnerDeletion:\n            f:controller:\n            f:kind:\n            f:name:\n            f:uid:\n      f:spec:\n        .:\n        f:dnsNames:\n        f:issuerRef:\n          .:\n          f:group:\n          f:kind:\n          f:name:\n        f:secretName:\n      f:status:\n        .:\n        f:conditions:\n        f:notAfter:\n        f:notBefore:\n        f:renewalTime:\n        f:revision:\n    Manager:    controller\n    Operation:  Update\n    Time:       2020-12-01T22:03:01Z\n  Owner References:\n    API Version:           extensions/v1beta1\n    Block Owner Deletion:  true\n    Controller:            true\n    Kind:                  Ingress\n    Name:                  cocreate-ws-ingress\n    UID:                   b6af7fbc-99c8-4c5b-8116-2144569e0286\n  Resource Version:        1895360\n  Self Link:               /apis/cert-manager.io/v1/namespaces/default/certificates/ws-tls-secret\n  UID:                     92dcc22f-c048-4be9-9592-cd1ee2098ddc\nSpec:\n  Dns Names:\n    ws.cocreate.app\n  Issuer Ref:\n    Group:      cert-manager.io\n    Kind:       ClusterIssuer\n    Name:       cocreate-letsencrypt-prod\n  Secret Name:  ws-tls-secret\nStatus:\n  Conditions:\n    Last Transition Time:  2020-12-01T22:03:01Z\n    Message:               Certificate is up to date and has not expired\n    Reason:                Ready\n    Status:                True\n    Type:                  Ready\n  Not After:               2021-03-01T21:03:01Z\n  Not Before:              2020-12-01T21:03:01Z\n  Renewal Time:            2021-01-30T21:03:01Z\n  Revision:                1\nEvents:\n  Type    Reason     Age    From          Message\n  ----    ------     ----   ----          -------\n  Normal  Issuing    3m2s   cert-manager  Issuing certificate as Secret does not exist\n  Normal  Generated  3m2s   cert-manager  Stored new private key in temporary Secret resource \"ws-tls-secret-hbnqb\"\n  Normal  Requested  3m2s   cert-manager  Created new CertificateRequest resource \"ws-tls-secret-4vpcw\"\n  Normal  Issuing    2m38s  cert-manager  The certificate has been successfully issued\n\n\n\n\u003e ~/bharat/github/clones\u003e kubectl describe secret ws-tls-secret\nName:         ws-tls-secret\nNamespace:    default\nLabels:       \u003cnone\u003e\nAnnotations:  cert-manager.io/alt-names: ws.cocreate.app\n              cert-manager.io/certificate-name: ws-tls-secret\n              cert-manager.io/common-name: ws.cocreate.app\n              cert-manager.io/ip-sans:\n              cert-manager.io/issuer-group: cert-manager.io\n              cert-manager.io/issuer-kind: ClusterIssuer\n              cert-manager.io/issuer-name: cocreate-letsencrypt-prod\n              cert-manager.io/uri-sans:\n\nType:  kubernetes.io/tls\n\nData\n====\ntls.key:  1675 bytes\ntls.crt:  3558 bytes\n\n```","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcocreate-app%2Fcocreate-cert-manager","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcocreate-app%2Fcocreate-cert-manager","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcocreate-app%2Fcocreate-cert-manager/lists"}