From aa99447f5dd761ff9f8b8c24e84a0b6e8438a081 Mon Sep 17 00:00:00 2001
From: Yadunand Prem <yadunand@yadunut.com>
Date: Tue, 5 Nov 2024 23:53:01 -0500
Subject: [PATCH] feat: add cert manager

---
 cluster/base/infra/cert-manager.yaml          | 18 ++++++++++++
 infra/controllers/1password/1password.yaml    |  2 +-
 .../cert-manager/cert-manager.yaml            | 29 +++++++++++++++++++
 infra/namespaces/namespaces.yaml              |  5 ++++
 4 files changed, 53 insertions(+), 1 deletion(-)
 create mode 100644 cluster/base/infra/cert-manager.yaml
 create mode 100644 infra/controllers/cert-manager/cert-manager.yaml

diff --git a/cluster/base/infra/cert-manager.yaml b/cluster/base/infra/cert-manager.yaml
new file mode 100644
index 0000000..2304c29
--- /dev/null
+++ b/cluster/base/infra/cert-manager.yaml
@@ -0,0 +1,18 @@
+---
+apiVersion: kustomize.toolkit.fluxcd.io/v1
+kind: Kustomization
+metadata:
+  name: infra-cert-manager
+  namespace: flux-system
+spec:
+  interval: 1h0m0s
+  path: ./infra/controllers/cert-manager
+  dependsOn:
+  - name: infra-namespaces
+  prune: true
+  retryInterval: 1m0s
+  sourceRef:
+    kind: GitRepository
+    name: flux-system
+  timeout: 5m0s
+  wait: true
diff --git a/infra/controllers/1password/1password.yaml b/infra/controllers/1password/1password.yaml
index 4358c55..db5d77f 100644
--- a/infra/controllers/1password/1password.yaml
+++ b/infra/controllers/1password/1password.yaml
@@ -25,7 +25,7 @@ spec:
   interval: 1m0s
   values:
     connect:
-      serviceType: LoadBalancer
+      serviceType: ClusterIP
       credentialsName: 1password-credentials
       credentialsKey: password
     operator:
diff --git a/infra/controllers/cert-manager/cert-manager.yaml b/infra/controllers/cert-manager/cert-manager.yaml
new file mode 100644
index 0000000..f66827f
--- /dev/null
+++ b/infra/controllers/cert-manager/cert-manager.yaml
@@ -0,0 +1,29 @@
+---
+apiVersion: source.toolkit.fluxcd.io/v1
+kind: HelmRepository
+metadata:
+  name: jetstack
+  namespace: cert-manager-system
+spec:
+  interval: 15m0s
+  url: https://charts.jetstack.io
+---
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: cert-manager
+  namespace: cert-manager-system
+spec:
+  chart:
+    spec:
+      chart: cert-manager
+      reconcileStrategy: ChartVersion
+      sourceRef:
+        kind: HelmRepository
+        name: jetstack
+      version: v1.16.1
+  interval: 1m0s
+  values:
+    crds:
+      enabled: true
+      keep: true
diff --git a/infra/namespaces/namespaces.yaml b/infra/namespaces/namespaces.yaml
index bbf588c..1aae17e 100644
--- a/infra/namespaces/namespaces.yaml
+++ b/infra/namespaces/namespaces.yaml
@@ -23,3 +23,8 @@ apiVersion: v1
 kind: Namespace
 metadata:
   name: 1password-system
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cert-manager-system