Dan V
deb6c38d7b
- Add .gitignore: exclude compiled binaries, build artifacts, and Helm values files containing real secrets (authentik, prometheus) - Add all Kubernetes deployment manifests (deployment/) - Add services source code: ha-sync, device-inventory, games-console, paperclip, parts-inventory - Add Ansible orchestration: playbooks, roles, inventory, cloud-init - Add hardware specs, execution plans, scripts, HOMELAB.md - Add skills/homelab/SKILL.md + skills/install.sh to preserve Copilot skill - Remove previously-tracked inventory-cli binary from git index Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
21 lines
662 B
YAML
21 lines
662 B
YAML
---
|
|
# Wildcard certificate for *.vandachevici.ro
|
|
# Used as nginx-ingress default SSL cert to eliminate the brief self-signed
|
|
# cert flash when a new ingress is first deployed.
|
|
#
|
|
# Requires DNS01 solver (already configured in letsencrypt-prod ClusterIssuer).
|
|
# Secret 'wildcard-vandachevici-tls' is referenced in ingress-nginx helm values.
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: wildcard-vandachevici
|
|
namespace: infrastructure
|
|
spec:
|
|
secretName: wildcard-vandachevici-tls
|
|
issuerRef:
|
|
name: letsencrypt-prod
|
|
kind: ClusterIssuer
|
|
commonName: "*.vandachevici.ro"
|
|
dnsNames:
|
|
- "*.vandachevici.ro"
|
|
- "vandachevici.ro"
|