https://github.com/skos-ninja/cert-checker

Checks for expiring certificates in a k8s cluster
https://github.com/skos-ninja/cert-checker

certificates k8s slack

Last synced: about 2 months ago
JSON representation

Checks for expiring certificates in a k8s cluster

• Host: GitHub
• URL: https://github.com/skos-ninja/cert-checker
• Owner: skos-ninja
• Created: 2020-08-16T18:34:36.000Z (over 4 years ago)
• Default Branch: master
• Last Pushed: 2023-03-01T19:59:38.000Z (almost 2 years ago)
• Last Synced: 2024-11-15T01:40:25.373Z (2 months ago)
• Topics: certificates, k8s, slack
• Language: Go
• Homepage:
• Size: 145 KB
• Stars: 0
• Watchers: 4
• Forks: 1
• Open Issues: 5
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# cert-checker

cert-checker allows you to scan for certificates in a kubernetes cluster and alert you via slack when they are set to expire soon.

![example message](https://github.com/skos-ninja/cert-checker/blob/master/example/example-msg.png?raw=true)

## Parameters

- `--expires-in-days` sets the number of days before the certificates expire to alert

- `--max-expired-in-days` set the number of days after the certificates expire to stop alerting

- `--min-cert-length-in-days` set the minimum number of days a certificate has to be valid for to alert

- `--slack-webhook` defines the webhook URL of the slack app

- `--namespace` can be passed multiple times to define each namespace that the app should scan (for all namespaces provide `*`)

- `--environment` specifies the environment context for the slack message

- `--alert-no-flagged-certs` enables a slack message for when no certificates are flagged

## Deployment

A slack app must be created for you to deploy this app. You can follow the steps [here](https://api.slack.com/messaging/webhooks#getting_started).

An example of a kubernetes deployment has been provided in [deployment/kubernetes.yml](deployment/kubernetes.yml) which provides a namespace, service account and cronjob.