Browse Source
cert-manager controller args: (#10049)
- Adding in the ability to feed extra-args to cert-manager-controller.
pull/10128/head
Rob Tongue
1 year ago
committed by
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with
8 additions and
0 deletions
-
inventory/sample/group_vars/k8s_cluster/addons.yml
-
roles/kubernetes-apps/ingress_controller/cert_manager/defaults/main.yml
-
roles/kubernetes-apps/ingress_controller/cert_manager/templates/cert-manager.yml.j2
|
|
|
@ -169,6 +169,10 @@ cert_manager_enabled: false |
|
|
|
# - "1.1.1.1" |
|
|
|
# - "8.8.8.8" |
|
|
|
|
|
|
|
# cert_manager_controller_extra_args: |
|
|
|
# - "--dns01-recursive-nameservers-only=true" |
|
|
|
# - "--dns01-recursive-nameservers=1.1.1.1:53,8.8.8.8:53" |
|
|
|
|
|
|
|
# MetalLB deployment |
|
|
|
metallb_enabled: false |
|
|
|
metallb_speaker_enabled: "{{ metallb_enabled }}" |
|
|
|
|
|
|
|
@ -6,6 +6,7 @@ cert_manager_affinity: {} |
|
|
|
cert_manager_nodeselector: {} |
|
|
|
cert_manager_dns_policy: "ClusterFirst" |
|
|
|
cert_manager_dns_config: {} |
|
|
|
cert_manager_controller_extra_args: [] |
|
|
|
|
|
|
|
|
|
|
|
## Change leader election namespace when deploying on GKE Autopilot that forbid the changes on kube-system namespace. |
|
|
|
|
|
|
|
@ -947,6 +947,9 @@ spec: |
|
|
|
- --v=2 |
|
|
|
- --cluster-resource-namespace=$(POD_NAMESPACE) |
|
|
|
- --leader-election-namespace={{ cert_manager_leader_election_namespace }} |
|
|
|
{% for extra_arg in cert_manager_controller_extra_args %} |
|
|
|
- {{ extra_arg }} |
|
|
|
{% endfor %} |
|
|
|
ports: |
|
|
|
- containerPort: 9402 |
|
|
|
name: http-metrics |
|
|
|
|
