ClusterIssuerSpec | @pennlabs/kittyhawk

Desired state of the ClusterIssuer resource.

schema: ClusterIssuerSpec

Hierarchy

ClusterIssuerSpec

Index

Properties

Optional Readonly acme

acme: ClusterIssuerSpecAcme

ACME configures this issuer to communicate with a RFC8555 (ACME) server to obtain signed x509 certificates.

schema: ClusterIssuerSpec#acme

Optional Readonly ca

ca: ClusterIssuerSpecCa

CA configures this issuer to sign certificates using a signing CA keypair stored in a Secret resource. This is used to build internal PKIs that are managed by cert-manager.

schema: ClusterIssuerSpec#ca

Optional Readonly selfSigned

selfSigned: ClusterIssuerSpecSelfSigned

SelfSigned configures this issuer to 'self sign' certificates using the private key used to create the CertificateRequest object.

schema: ClusterIssuerSpec#selfSigned

Optional Readonly vault

vault: ClusterIssuerSpecVault

Vault configures this issuer to sign certificates using a HashiCorp Vault PKI backend.

schema: ClusterIssuerSpec#vault

Optional Readonly venafi

venafi: ClusterIssuerSpecVenafi

Venafi configures this issuer to sign certificates using a Venafi TPP or Venafi Cloud policy zone.

schema: ClusterIssuerSpec#venafi