# DO NOT EDIT: This file has been automatically generated by the script in helm/render-all.sh, edits may get overwritten apiVersion: v1 kind: ServiceAccount metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns rules: - apiGroups: - "" resources: - secrets verbs: - get - apiGroups: - flowcontrol.apiserver.k8s.io resources: - flowschemas - prioritylevelconfigurations verbs: - watch - list --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns:domain-solver rules: - apiGroups: - acme.zacharyseguin.ca resources: - '*' verbs: - create --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns:webhook-authentication-reader namespace: kube-system roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: extension-apiserver-authentication-reader subjects: - apiGroup: "" kind: ServiceAccount name: cert-manager-webhook-pdns namespace: cert-manager --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: cert-manager-webhook-pdns subjects: - apiGroup: "" kind: ServiceAccount name: cert-manager-webhook-pdns namespace: cert-manager --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns:auth-delegator roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: system:auth-delegator subjects: - apiGroup: "" kind: ServiceAccount name: cert-manager-webhook-pdns namespace: cert-manager --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns:domain-solver roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: cert-manager-webhook-pdns:domain-solver subjects: - apiGroup: "" kind: ServiceAccount name: cert-manager namespace: cert-manager --- apiVersion: v1 kind: Service metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns spec: ports: - name: https port: 443 protocol: TCP targetPort: https selector: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/name: cert-manager-webhook-pdns type: ClusterIP --- apiVersion: apps/v1 kind: Deployment metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns spec: replicas: null selector: matchLabels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/name: cert-manager-webhook-pdns template: metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 spec: containers: - args: - --tls-cert-file=/tls/tls.crt - --tls-private-key-file=/tls/tls.key - --secure-port=8443 env: - name: GROUP_NAME value: acme.zacharyseguin.ca image: zachomedia/cert-manager-webhook-pdns:v2.5.2 imagePullPolicy: IfNotPresent livenessProbe: httpGet: path: /healthz port: https scheme: HTTPS name: cert-manager-webhook-pdns ports: - containerPort: 8443 name: https protocol: TCP readinessProbe: httpGet: path: /healthz port: https scheme: HTTPS resources: {} securityContext: runAsGroup: 100 runAsUser: 100 volumeMounts: - mountPath: /tls name: certs readOnly: true serviceAccountName: cert-manager-webhook-pdns volumes: - name: certs secret: secretName: cert-manager-webhook-pdns-webhook-tls --- apiVersion: apiregistration.k8s.io/v1 kind: APIService metadata: annotations: cert-manager.io/inject-ca-from: cert-manager/cert-manager-webhook-pdns-webhook-tls labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: v1alpha1.acme.zacharyseguin.ca spec: group: acme.zacharyseguin.ca groupPriorityMinimum: 1000 service: name: cert-manager-webhook-pdns namespace: cert-manager version: v1alpha1 versionPriority: 15 --- apiVersion: cert-manager.io/v1 kind: Certificate metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns-ca namespace: cert-manager spec: commonName: ca.cert-manager-webhook-pdns.cert-manager duration: 43800h0m0s isCA: true issuerRef: name: cert-manager-webhook-pdns-selfsign secretName: cert-manager-webhook-pdns-ca --- apiVersion: cert-manager.io/v1 kind: Certificate metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns-webhook-tls namespace: cert-manager spec: dnsNames: - cert-manager-webhook-pdns - cert-manager-webhook-pdns.cert-manager - cert-manager-webhook-pdns.cert-manager.svc duration: 8760h0m0s issuerRef: name: cert-manager-webhook-pdns-ca secretName: cert-manager-webhook-pdns-webhook-tls --- apiVersion: cert-manager.io/v1 kind: Issuer metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns-ca namespace: cert-manager spec: ca: secretName: cert-manager-webhook-pdns-ca --- apiVersion: cert-manager.io/v1 kind: Issuer metadata: labels: app.kubernetes.io/instance: cert-manager-webhook-pdns app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: cert-manager-webhook-pdns app.kubernetes.io/version: v2.5.2 helm.sh/chart: cert-manager-webhook-pdns-3.2.3 name: cert-manager-webhook-pdns-selfsign namespace: cert-manager spec: selfSigned: {}