From 76243bc3a985c91a601826aa8ad7527b7500c6e0 Mon Sep 17 00:00:00 2001
From: Vojtech Mares <iam@vojtechmares.com>
Date: Sat, 11 May 2024 15:00:15 +0200
Subject: [PATCH] feat: add clusterissuers

---
 apps/system/clusterissuers.yaml               | 20 +++++++++++++++++++
 .../system/cert-manager/clusterissuers.yaml   | 14 +++++++++++++
 2 files changed, 34 insertions(+)
 create mode 100644 apps/system/clusterissuers.yaml
 create mode 100644 manifests/system/cert-manager/clusterissuers.yaml

diff --git a/apps/system/clusterissuers.yaml b/apps/system/clusterissuers.yaml
new file mode 100644
index 0000000..a7a9c59
--- /dev/null
+++ b/apps/system/clusterissuers.yaml
@@ -0,0 +1,20 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: clusterissuers
+  namespace: argocd
+  annotations:
+    argocd.argoproj.io/sync-wave: "10"
+spec:
+  project: system
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true
+  source:
+    path: manifests/system/cert-manager/
+    repoURL: git@gitlab.mareshq.com:hq/cthulhunetes/gitops.git
+    targetRevision: HEAD
+  destination:
+    server: "https://kubernetes.default.svc"
+    namespace: default
diff --git a/manifests/system/cert-manager/clusterissuers.yaml b/manifests/system/cert-manager/clusterissuers.yaml
new file mode 100644
index 0000000..b7fd30c
--- /dev/null
+++ b/manifests/system/cert-manager/clusterissuers.yaml
@@ -0,0 +1,14 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-production
+spec:
+  acme:
+    email: nobody@mareshq.com
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: letsencrypt-production
+    solvers:
+      - http01:
+          ingress:
+            class: nginx