Merge pull request #226 from devtron-labs/helm-tls-certs

feat: Added helm-tls-certs

Author: prakarsh-dt

charts/helm-tls-certs/Chart.yaml

@@ -0,0 +1,6 @@
+apiVersion: v2
+name: helm-tls-certs
+description: A Helm chart for generating TLS secrets
+type: application
+version: 0.1.0
+appVersion: 0.1.0

charts/helm-tls-certs/templates/_helpers.tpl

@@ -0,0 +1,10 @@
+{{/*
+Generate a certificate pair
+*/}}
+{{- define "devtron.gen-certs" -}}
+{{- $ca := genCA "devtron-ca" (int .Values.certDays) -}}
+{{- $cn := .Values.commonName | default (printf "%s.%s" .Release.Name .Release.Namespace) -}}
+{{- $cert := genSignedCert $cn nil nil (int .Values.certDays) $ca -}}
+tls.crt: {{ $cert.Cert | b64enc }}
+tls.key: {{ $cert.Key | b64enc }}
+{{- end -}}

charts/helm-tls-certs/templates/tls-secret.yaml

@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Secret
+type: kubernetes.io/tls
+metadata:
+  name: {{ .Values.secretName }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app.kubernetes.io/name: {{ .Release.Name }}
+    helm.sh/chart: {{ .Chart.Name }}
+    app.kubernetes.io/managed-by: {{ .Release.Service }}
+    app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/version: {{ .Chart.AppVersion }}
+  annotations:
+    "helm.sh/hook": "pre-install"
+    "helm.sh/hook-delete-policy": "before-hook-creation"
+data:
+{{ (include "devtron.gen-certs" . ) | indent 2 }}

charts/helm-tls-certs/values.yaml

@@ -0,0 +1,9 @@
+# Name of the secret to be created
+secretName: tls-secret
+
+# Number of days for the certificate validity
+certDays: 2555
+
+# Common Name for the certificate (optional)
+# If not set, it will use <release-name>.<release-namespace>
+commonName: ""