-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
4.17
-
Quality / Stability / Reliability
-
False
-
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
Description of problem:
Issue in file security/cert_manager_operator/cert-manager-operator-issuer-acme.adoc In the prerequisites we direct the user to follow upstream documentation for creating the service principle but we should also show an example of using the Cloud Credential Operator's CredentialRequest.
Steps to Reproduce:
The example cloud credential operator request would be:
apiVersion: cloudcredential.openshift.io/v1 kind: CredentialsRequest metadata: name: cert-manager-azure namespace: openshift-cloud-credential-operator spec: providerSpec: apiVersion: cloudcredential.openshift.io/v1 kind: AzureProviderSpec roleBindings: - role: "DNS Zone Contributor" scope: example.com secretRef: name: cert-manager-azure namespace: cert-manager serviceAccountNames: - cert-manager
apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: letsencrypt spec: acme: email: user@example.com privateKeySecretRef: name: letsencrypt-account-key server: https://acme-v02.api.letsencrypt.org/directory solvers: - dns01: azureDNS: clientID: <from cert-manager-azure secret key client_id> clientSecretSecretRef: name: cert-manager-azure key: azure_client_secret subscriptionID: <from cert-manager-azure secret key azure_subscription_id> tenantID: <from cert-manager-azure secret key azure_tenant_id> resourceGroupName: example-resourcegroup hostedZoneName: example.com # Azure Cloud Environment, default to AzurePublicCloud environment: AzurePublicCloud
