Skip to content

Commit

Permalink
Allow configuration of precheck nameservers for shoot-cert-service ex…
Browse files Browse the repository at this point in the history
…tension (#334)
  • Loading branch information
robertvolkmann authored Oct 15, 2024
1 parent 90b2c4c commit d285f2c
Show file tree
Hide file tree
Showing 3 changed files with 5 additions and 0 deletions.
1 change: 1 addition & 0 deletions control-plane/roles/gardener/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -116,6 +116,7 @@ This includes the metal-stack extension provider called [gardener-extension-prov
| gardener_extension_networking_cilium_image_vector_overwrite | | Allows overriding the image vector for the networking cilium extension |
| gardener_cert_management_issuer_email | | The issuer email used by the cert-management extension |
| gardener_cert_management_issuer_server | | The issuer server used by the cert-management extension |
| gardener_cert_management_precheck_nameservers | | To provide special set of nameservers to be used for prechecking DNSChallenges for an issuer |

### Certificates

Expand Down
1 change: 1 addition & 0 deletions control-plane/roles/gardener/defaults/main/extensions.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -68,6 +68,7 @@ gardener_extension_provider_metal_image_pull_secret:
gardener_cert_management_issuer_private_key: ""
gardener_cert_management_issuer_server: https://acme-v02.api.letsencrypt.org/directory
gardener_cert_management_issuer_email:
gardener_cert_management_precheck_nameservers: []

gardener_extension_dns_external_controller_registration_url:

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -19,3 +19,6 @@ providerConfig:
server: "{{ gardener_cert_management_issuer_server }}"
privateKey: |
{{ gardener_cert_management_issuer_private_key | indent(width=12, first=false) }}
{% if gardener_cert_management_precheck_nameservers %}
precheckNameservers: "{{ gardener_cert_management_precheck_nameservers | join(',') }}"
{% endif %}

0 comments on commit d285f2c

Please sign in to comment.