34 lines
1.1 KiB
YAML
34 lines
1.1 KiB
YAML
# alternate names of the services. This renders to: [ component-svc.namespace, component-svc.namespace.svc ]
|
|
{{- $altNamesKopia := list ( printf "%s-svc.%s" "data-mover" .Release.Namespace ) ( printf "%s-svc.%s.svc" "data-mover" .Release.Namespace ) }}
|
|
# generate ca cert with 365 days of validity
|
|
{{- $caKopia := genCA ( printf "%s-svc-ca" "data-mover" ) 365 }}
|
|
# generate cert with CN="component-svc", SAN=$altNames and with 365 days of validity
|
|
{{- $certKopia := genSignedCert ( printf "%s-svc" "data-mover" ) nil $altNamesKopia 365 $caKopia }}
|
|
apiVersion: v1
|
|
kind: Secret
|
|
type: Opaque
|
|
metadata:
|
|
name: kopia-tls-cert
|
|
labels:
|
|
{{ include "helm.labels" . | indent 4 }}
|
|
{{- if .Values.global.rhMarketPlace }}
|
|
annotations:
|
|
"helm.sh/hook": "pre-install"
|
|
{{- end }}
|
|
data:
|
|
tls.crt: {{ $certKopia.Cert | b64enc }}
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
type: Opaque
|
|
metadata:
|
|
name: kopia-tls-key
|
|
labels:
|
|
{{ include "helm.labels" . | indent 4 }}
|
|
{{- if .Values.global.rhMarketPlace }}
|
|
annotations:
|
|
"helm.sh/hook": "pre-install"
|
|
{{- end }}
|
|
data:
|
|
tls.key: {{ $certKopia.Key | b64enc }}
|