Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/kogito-ops/cert-manager-webhook-maas

cert-manager webhook for the Canonical MAAS API.
https://github.com/kogito-ops/cert-manager-webhook-maas

cert-manager-webhook kubernetes-service maas-api

Last synced: 2 months ago
JSON representation

cert-manager webhook for the Canonical MAAS API.

Awesome Lists containing this project

README 

          
# cert-manager-webhook-maas



A cert-manager ACME DNS01 solver webhook for Canonical MAAS (Metal as a Service).






[![License](https://img.shields.io/badge/license-Apache--2.0-blue.svg)](LICENSE.md)






## Overview



This webhook implements an ACME DNS01 challenge solver for cert-manager that

integrates with MAAS DNS. This allows you to use cert-manager with Let's Encrypt

(or other ACME CAs) to automatically provision TLS certificates for domains

managed by MAAS.



## Features



- Integrates with MAAS DNS API for DNS-01 challenges

- Supports wildcard certificates

- Configurable per-issuer with different MAAS instances

- Uses official Canonical gomaasclient library



## Prerequisites



- Kubernetes cluster with cert-manager installed (>= v1.18.0)

- MAAS instance with DNS enabled

- MAAS API credentials



## Installation



### Using Helm (Recommended)



1. Add the Helm repository:



```bash

helm repo add maas-webhook https://kogito-ops.github.io/cert-manager-webhook-maas

helm repo update

```



2. Create a secret containing your MAAS API credentials:



```yaml

apiVersion: v1

kind: Secret

metadata:

  name: maas-secret

  namespace: cert-manager

type: Opaque

stringData:

  api-key: "your-consumer-key:your-token-key:your-token-secret"

```



```bash

kubectl apply -f - <