Mercurial > code > home > repos > pomerium

diff make_global.py @ 32:1d3d12b7cf6d

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
move pom cert into make_global.py to share some vars
author drewp@bigasterisk.com
date Wed, 21 Jun 2023 22:57:20 -0700
parents 7d0e02a13b43
children b1f75b0584f3
line wrap: on
line diff
--- a/make_global.py	Mon Jun 19 22:21:44 2023 -0700
+++ b/make_global.py	Wed Jun 21 22:57:20 2023 -0700
@@ -59,6 +59,24 @@
 #            }
 #        },
     }
+def pomCert():
+    return {
+  "apiVersion": "cert-manager.io/v1",
+  "kind": "Certificate",
+  "metadata": {
+    "name": POM_CERT_NAME,
+    "namespace": "pomerium"
+  },
+  "spec": {
+    "dnsNames": [
+      AUTH_HOST
+    ],
+    "issuerRef": {
+      "kind": "ClusterIssuer",
+      "name": "letsencrypt-dns-prod"
+    },
+    "secretName": "pomerium-proxy-tls"
+  }
 }
 
 # Old note: pom won't start up if this cert doesn't exist, so you have to run once