GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → SUSE → helm-certgen

SUSE / helm-certgen

Licence: Apache-2.0 license
Helm plugin for generation of TLS certificates

Programming Languages

go
31211 projects - #10 most used programming language
shell
77523 projects
Makefile
30231 projects

Labels

tlskuberneteshelmk8shelm-chartstls-certificatehelm-plugin

Projects that are alternatives of or similar to helm-certgen

helm-mapkubeapis
This is a Helm plugin which map deprecated or removed Kubernetes APIs in a release to supported APIs
Stars: ✭ 287 (+1813.33%)
Mutual labels:  helm, helm-charts, helm-plugin
hull
The incredible HULL - Helm Uniform Layer Library - is a Helm library chart to improve Helm chart based workflows
Stars: ✭ 66 (+340%)
Mutual labels:  helm, helm-charts, helm-plugin
win-ca
Get Windows System Root certificates
Stars: ✭ 78 (+420%)
Mutual labels:  tls, tls-certificate
k8s-webhook-cert-manager
Generate certificate suitable for use with any Kubernetes Mutating Webhook.
Stars: ✭ 59 (+293.33%)
Mutual labels:  tls, tls-certificate
helm-charts
Source & Repo of https://charts.kubesphere.io/main & https://charts.kubesphere.io/test
Stars: ✭ 85 (+466.67%)
Mutual labels:  helm, helm-charts
Helmfiles
Comprehensive Distribution of Helmfiles for Kubernetes
Stars: ✭ 205 (+1266.67%)
Mutual labels:  helm, helm-charts
Build Harness
🤖Collection of Makefiles to facilitate building Golang projects, Dockerfiles, Helm charts, and more
Stars: ✭ 236 (+1473.33%)
Mutual labels:  helm, helm-charts
ship-it
Wattpad's tool for continuously deploying code to Kubernetes quickly, safely, and observably.
Stars: ✭ 14 (-6.67%)
Mutual labels:  helm, helm-charts
Charts
JFrog official Helm Charts
Stars: ✭ 148 (+886.67%)
Mutual labels:  helm, helm-charts
private-tls-cert
A simple Terraform module to generate self-signed TLS certificates for private use
Stars: ✭ 36 (+140%)
Mutual labels:  tls, tls-certificate
acmed
ACME (RFC 8555) client daemon
Stars: ✭ 121 (+706.67%)
Mutual labels:  tls, tls-certificate
insecure
Secure your dev servers, insecurely!
Stars: ✭ 41 (+173.33%)
Mutual labels:  tls, tls-certificate
Helm Secrets
Successor of zendesk/helm-secrets - A helm plugin that help manage secrets with Git workflow and store them anywhere
Stars: ✭ 165 (+1000%)
Mutual labels:  helm, helm-charts
Helm Mapkubeapis
This is a Helm plugin which map deprecated or removed Kubernetes APIs in a release to supported APIs
Stars: ✭ 157 (+946.67%)
Mutual labels:  helm, helm-charts
cryptonice
CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration…
Stars: ✭ 91 (+506.67%)
Mutual labels:  tls, tls-certificate
Aws Ssm
Populates Kubernetes Secrets from AWS Parameter Store
Stars: ✭ 150 (+900%)
Mutual labels:  helm, helm-charts
crlite
WebPKI-level Certificate Revocation via Multi-Level Bloom Filter Cascade
Stars: ✭ 52 (+246.67%)
Mutual labels:  tls, tls-certificate
charts
Helm charts for using F5 products and services in Kubernetes and OpenShift environments.
Stars: ✭ 28 (+86.67%)
Mutual labels:  helm, helm-charts
K8s
Kubernetes Helm Charts for the ORY ecosystem.
Stars: ✭ 127 (+746.67%)
Mutual labels:  helm, helm-charts
Captain
A Helm 3 Controller
Stars: ✭ 129 (+760%)
Mutual labels:  helm, helm-charts
View All Similar Projects ➔

helm-certgen

Build Status

This repository is for certgen plugin for Kubernetes Helm CLI. This plugin enables TLS certificate generation for helm charts.

To use the helm-certgen plugin, the helm charts should have a cert.yaml file which outlines the requirements for certificates (the CSR details, alias names etc.,). The plugin will use these information to generate the certificates and place them as a Kubernetes secret in the appropriate namespace.

More details about what happens behind the scene can be found @ how certgen plugin works

Since the plugin uses Kubernetes certificate API, we suggest that you use it against a Kubernetes version 1.6.4 or above.

If you are using Minikube then please follow the minikube configuration guide to make sure that your minikube is setup correctly for approving CSR and issuing the certificates.

Installing the plugin

Download the released version of the plugin for your operating system from the https://github.com/SUSE/helm-certgen/releases page. After downloading the package files, extract the archieve locally and then run the helm plugin install command on that path.

helm plugin install /tmp/certgen-darwin-amd64-1-0-0-1501786067-53c4719

If you would like to build the plugin yourself locally follow the instructions from this @ readme

Using Plugin

To understand how to use the plugin, we will try to deploy sample/go-demo-app using this plugin and helm cli.

More details on how sample/go-demo-app can be found @ sample/go-demo-app

Deploying the application

To start with, make sure you have helm API (tiller) enabled on your Kubernetes cluster (using helm init). Also, make sure you have installed the certgen plugin as per these instructions.

Now let's generate the certificates. For this, we can run the following command:

cd $GOPATH/src/github.com/SUSE/helm-certgen
helm certgen generate sample/go-demo-app --namespace sample-go-demo-app

This invokes the certgen plugin with generate command and provides the path of the of chart directory along with the namespace in which to deploy this chart. Once we do this, the certificates will be generated, and a secret will be created in the specified namespace.

Now we should be able to deploy the application with the help of helm CLI

helm install sample/go-demo-app --namespace sample-go-demo-app

Once the application goes to running state, you should be able to invoke the application API.

Remember to follow the steps in the minikube configuration guide to make sure that you have correct /etc/hosts entries and also the CA cert is added to your trust store.

Contribute

This project is still under active development, so you'll likely encounter issues.

Please participate by filing issues or contributing a pull request!

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].