Description
Cert-manager is a native Kubernetes certificate management controller. It helps with issuing certificates from a variety of sources like Let's Encrypt, HashiCorp Vault, or self-signed, and ensures certificates are valid and up-to-date.
- Automated certificate issuance, renewal, and management.
- Supports a variety of certificate sources including ACME, Vault, and self-signed.
- Webhook functionalities for extensibility.
- Mature ecosystem and community support.
Description
Cert-manager is a native Kubernetes certificate management controller. It helps with issuing certificates from a variety of sources like Let's Encrypt, HashiCorp Vault, or self-signed, and ensures certificates are valid and up-to-date.
- Automated certificate issuance, renewal, and management.
- Supports a variety of certificate sources including ACME, Vault, and self-signed.
- Webhook functionalities for extensibility.
- Mature ecosystem and community support.
Relevant Links
Instructions for deployment
kubectl apply -k github.com/gruberdev/homelab/apps/networking/certmanager
Important notes regarding ArgoCD deployment
- The application ArgoCD file for External-DNS has
.spec.SyncOptionsvalueServerSideApply=trueset toTrueThis fixes the following and similar errors related to recreating CRDs using ArgoCD:
The ConfigMap is invalid: metadata.annotations: Too long: must have at most 262144 charactersThere's an argument to be made
Replace=Trueis faster when recreating large CRDs, however, this is not recommended to most CRDs, as replacing resources tend to be more disruptive and generate unpredictable outcomes rather than usingServerSideApply=true.Resources regarding more details related to this particular problem: