demos/api7-demo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add private key config to certificate template and values
All checks were successful
Helm Chart Build / lint-only (push) Has been skipped
Details
Helm Chart Build / build-helm (push) Successful in 8s
Details
Build and Deploy / build-api (push) Successful in 50s
Details
Build and Deploy / build-web (push) Successful in 1m4s
Details

Browse Source
This commit is contained in:
d.viti
2025-10-08 13:19:57 +02:00
parent 0935010f89
commit c0832ff59b
2 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
helm/api7ee-demo-k8s/templates/certificate.yaml
View File

@@ -15,6 +15,11 @@ spec:
{{- range .Values.api7.hosts }}
- {{ . | quote }}
{{- end }}
privateKey:
algorithm: RSA
encoding: PKCS1
size: 2048
rotationPolicy: {{ .Values.api7.tls.privateKey.rotationPolicy | default "Always" }}
usages:
- digital signature
- key encipherment
@@ -22,4 +27,4 @@ spec:
- client auth
duration: 2160h # 90 days
renewBefore: 720h # 30 days before expiry
{{- end }}
{{- end }}

3
helm/api7ee-demo-k8s/values.yaml
View File

@@ -242,6 +242,9 @@ api7:
enabled: true
issuer: cloudflare-acme-prod # ClusterIssuer name
issuerKind: ClusterIssuer # or Issuer
# Private key configuration
privateKey:
rotationPolicy: Always # Always or Never (cert-manager >= v1.18.0 default is Always)
# Option 2: Use existing secret
secretName: "" # Name of existing TLS secret
# Option 3: Provide certificates directly (not recommended for production)