Options
All
  • Public
  • Public/Protected
  • All
Menu

Vault configures this issuer to sign certificates using a HashiCorp Vault PKI backend.

schema

ClusterIssuerSpecVault

Hierarchy

  • ClusterIssuerSpecVault

Index

Properties

Readonly auth

Auth configures how cert-manager authenticates with the Vault server.

schema

ClusterIssuerSpecVault#auth

Optional Readonly caBundle

caBundle: string

PEM-encoded CA bundle (base64-encoded) used to validate Vault server certificate. Only used if the Server URL is using HTTPS protocol. This parameter is ignored for plain HTTP protocol connection. If not set the system root certificates are used to validate the TLS connection.

schema

ClusterIssuerSpecVault#caBundle

Optional Readonly namespace

namespace: string

Name of the vault namespace. Namespaces is a set of features within Vault Enterprise that allows Vault environments to support Secure Multi-tenancy. e.g: "ns1" More about namespaces can be found here https://www.vaultproject.io/docs/enterprise/namespaces

schema

ClusterIssuerSpecVault#namespace

Readonly path

path: string

Path is the mount path of the Vault PKI backend's sign endpoint, e.g: "my_pki_mount/sign/my-role-name".

schema

ClusterIssuerSpecVault#path

Readonly server

server: string

Server is the connection address for the Vault server, e.g: "https://vault.example.com:8200".

schema

ClusterIssuerSpecVault#server

Generated using TypeDoc