{"id":26209993,"url":"https://github.com/snoussi/my-cert-manager","last_synced_at":"2026-06-01T09:32:22.385Z","repository":{"id":281879133,"uuid":"946738711","full_name":"snoussi/my-cert-manager","owner":"snoussi","description":null,"archived":false,"fork":false,"pushed_at":"2025-04-17T15:55:42.000Z","size":55,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-12-25T21:00:13.462Z","etag":null,"topics":["certmanager","cloudflare","letsencrypt","openshift"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/snoussi.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-03-11T15:47:28.000Z","updated_at":"2025-04-17T15:55:46.000Z","dependencies_parsed_at":"2025-03-11T16:40:14.841Z","dependency_job_id":null,"html_url":"https://github.com/snoussi/my-cert-manager","commit_stats":null,"previous_names":["snoussi/my-cert-manager"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/snoussi/my-cert-manager","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/snoussi%2Fmy-cert-manager","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/snoussi%2Fmy-cert-manager/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/snoussi%2Fmy-cert-manager/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/snoussi%2Fmy-cert-manager/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/snoussi","download_url":"https://codeload.github.com/snoussi/my-cert-manager/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/snoussi%2Fmy-cert-manager/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33769491,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-01T02:00:06.963Z","response_time":115,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["certmanager","cloudflare","letsencrypt","openshift"],"created_at":"2025-03-12T07:18:44.849Z","updated_at":"2026-06-01T09:32:22.355Z","avatar_url":"https://github.com/snoussi.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Install OpenShift cert-manager operator\n\nFirst, You need to install cert-manager in your Openshift cluster.\n\n# Configure and deploy an ACME issuer (Let’s Encrypt) to solve cloudflare DNS challenges\n\n## Create a Cloudflare Api token\n\nGo to Cloudflare dashboard \u003e Profile (Right top corner) \u003e API Tokens. Click Create Token button and Create custom token button. And then, fill Permission section form below. And then, fill Permission section form like below. Finally, copy the Cloudflare API token.\n\n![cloudflare-api-token-permission](img/cloudflare-api-token-permission.png)\n\n## Create the Cloudflare API token secret\n\nOpen [cloudflare-api-token-secret.yml](cloudflare-api-token-secret.yml), and replace  \u003cCloudflare API token\u003e with your Cloudflare API token.\nThen, run the following command:\n\n```sh\noc apply -f cloudflare-api-token-secret.yml\n```\n\n## Deploy ClustterIssuer with Cloudflare DNS challenges\n\nOpen [letsEncrypt-cloudflare-clusterIssuer.yml](letsEncrypt-cloudflare-clusterIssuer.yml), and replace:\n\n- *your-letsencrypt-email@example.com* with your Let's Encrypt Email\n- *your-cloudflare-email@example.com* with your Cloudflare Email\n\nThen, run the following command:\n\n```sh\noc apply -f letsEncrypt-cloudflare-clusterIssuer.yml\n```\n\n# Create and add the API server Certificate\n\n## Create the API server Certificate\n\nOpen [api-server-tls-certificate.yml](api-server-tls-certificate.yml), and replace \u003ccluster_base_domain\u003e with your DNS name.\nThen, run the following command:\n\n```sh\noc create -f api-server-tls-certificate.yml\n```\n\n## Replace the API server Certificate\n\nReplace \u003ccluster_base_domain\u003e with your DNS name, and run the following command to update the API server with a reference to the secret created by the API server Certificate\n\n```sh\noc patch apiserver cluster --type=merge --patch='{\"spec\": {\"servingCerts\": {\"namedCertificates\": [{\"names\": [\" 'api.\u003ccluster_base_domain\u003e' \"], \"servingCertificate\": {\"name\": \"api-server-certs\"}}]}}}'\n```\n\nMore info here :\n\n- https://docs.openshift.com/container-platform/4.18/security/cert_manager_operator/cert-manager-creating-certificate.html#cert-manager-certificate-api-server_cert-manager-creating-certificate\n- https://docs.openshift.com/container-platform/4.18/security/certificates/api-server.html#customize-certificates-api-add-named_api-server-certificates\n\n# Create and replace the default Ingress Controller Certificate\n\n## Create the Ingress Controller Certificate\n\nOpen [ingress-controller-tls-certificate.yml](ingress-controller-tls-certificate.yml), and replace \u003ccluster_base_domain\u003e with your DNS name.\nThen, run the following command:\n\n```sh\noc create -f ingress-controller-tls-certificate.yml\n```\n\n## Replace the default ingress controller certificate\n\nRun the following command to update the Ingress Controller configuration with the newly created secret by the Ingress Controller Certificate\n\n```sh\noc patch ingresscontroller default --type=merge --patch='{\"spec\": { \"defaultCertificate\": { \"name\": \"ingress-controller-certs\" }}}' -n openshift-ingress-operator\n```\n\nMore info here :\n\n- https://docs.openshift.com/container-platform/4.18/security/cert_manager_operator/cert-manager-creating-certificate.html#cert-manager-certificate-ingress_cert-manager-creating-certificate\n- https://docs.openshift.com/container-platform/4.18/security/certificates/replacing-default-ingress-certificate.html#replacing-default-ingress\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsnoussi%2Fmy-cert-manager","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsnoussi%2Fmy-cert-manager","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsnoussi%2Fmy-cert-manager/lists"}