KalmHttps Cert
Httpscert defines a x.509 certificate.
For example, the default configuration for Kalm dashboard would look as follows:
apiVersion: core.kalm.dev/v1alpha1
kind: HttpsCert
metadata:
name: dashboard
spec:
domains:
- foobar-cluster.kalm.dev
httpsCertIssuer: default-http01-issuer
It defines a certificate for the domain: foobar-cluster.kalm.dev and reference the certificate issuer: default-http01-issuer.
HttpsCert
| Field | Type | Description | Required |
|---|---|---|---|
| isSelfManaged | bool | whether certificate is uploaded by user or managed by Kalm | False |
| selfManagedCertSecretName | string | if IsSelfManaged is true, the name of secret storing the certificate info | False |
| httpsCertIssuer | string | issuer name of the cert | False |
| domains | string[] | domains in certificate | True |
HttpsCertStatus
| Field | Type | Description |
|---|---|---|
| Conditions | HttpsCertCondition[] | details of httpsCert condition |
| ExpireTimestamp | int64 | expire timestamp of the certificate. |
| IsSignedByPublicTrustedCA | bool | is this certificate signed by publicly trusted Certificate Authority. |
| WildcardCertDNSChallengeDomainMap | map[string]string | for wildcard certificate, CNAME info of domains, key is the certificate domain, value if where this certificate domain should add CNAME DNS record to pass the DNS-01 challenge. |
HttpsCertCondition
| Field | Type | Description |
|---|---|---|
| Type | HttpsCertConditionType | type of the HttpsCert condition, possible value: Ready. |
| Status | corev1.ConditionStatus | status of the condition, possible values: True, False and Unknown. |
| Reason | string | a brief machine readable explanation for the condition's last transition. |
| Message | string | a human readable description of the details of the last transition, complementing reason. |