Https Cert

Httpscert defines a x.509 certificate.

For example, the default configuration for Kalm dashboard would look as follows:

apiVersion: core.kalm.dev/v1alpha1
kind: HttpsCert
metadata:
name: dashboard
spec:
domains:
- foobar-cluster.kalm.dev
httpsCertIssuer: default-http01-issuer

It defines a certificate for the domain: foobar-cluster.kalm.dev and reference the certificate issuer: default-http01-issuer.

HttpsCert

FieldTypeDescriptionRequired
isSelfManagedboolwhether certificate is uploaded by user or managed by KalmFalse
selfManagedCertSecretNamestringif IsSelfManaged is true, the name of secret storing the certificate infoFalse
httpsCertIssuerstringissuer name of the certFalse
domainsstring[]domains in certificateTrue

HttpsCertStatus

FieldTypeDescription
ConditionsHttpsCertCondition[]details of httpsCert condition
ExpireTimestampint64expire timestamp of the certificate.
IsSignedByPublicTrustedCAboolis this certificate signed by publicly trusted Certificate Authority.
WildcardCertDNSChallengeDomainMapmap[string]stringfor wildcard certificate, CNAME info of domains, key is the certificate domain, value if where this certificate domain should add CNAME DNS record to pass the DNS-01 challenge.

HttpsCertCondition

FieldTypeDescription
TypeHttpsCertConditionTypetype of the HttpsCert condition, possible value: Ready.
Statuscorev1.ConditionStatusstatus of the condition, possible values: True, False and Unknown.
Reasonstringa brief machine readable explanation for the condition's last transition.
Messagestringa human readable description of the details of the last transition, complementing reason.
Last updated on by Liu Mingmin