TylerWanner/cert-manager|backend.tf

## cert-manager|backend.tf
terraform {
  backend "local" {
    path = "../states/cert_manager.tfstate"
  }
}
data "terraform_remote_state" "cluster" {
  backend = "local"

  config = {
    path = "../states/cluster.tfstate"
  }
}

## cert-manager|helm.tf
resource "kubernetes_namespace" "cm" {
  metadata {
    name = "cert-manager"
  }
}
resource "helm_release" "cm" {
  name             = "cm"
  namespace        = kubernetes_namespace.cm.metadata[0].name
  create_namespace = false
  chart            = "cert-manager"
  repository       = "https://charts.jetstack.io"
  version          = "v1.5.3"
  values = [
    file("values.yaml")
  ]
}

## cert-manager|terraform.tf
provider google {}

data "google_client_config" "default" {}

provider kubernetes {
  host                   = "https://${data.terraform_remote_state.cluster.outputs.cluster_endpoint}"
  token                  = data.google_client_config.default.access_token
  cluster_ca_certificate = base64decode(data.terraform_remote_state.cluster.outputs.cacert)
}

provider "helm" {
  kubernetes {
    host                   = "https://${data.terraform_remote_state.cluster.outputs.cluster_endpoint}"
    token                  = data.google_client_config.default.access_token
    cluster_ca_certificate = base64decode(data.terraform_remote_state.cluster.outputs.cacert)
  }
}

## cert-manager|values.yaml
global:
  podSecurityPolicy:
    enabled: true
    useAppArmor: true
prometheus:
  enabled: false
installCRDs: true

## cert-manager|versions.tf
terraform {
  required_providers {
    google = {
      source  = "hashicorp/google"
      version = "3.85.0"
    }
    helm = {
      source  = "hashicorp/helm"
      version = "2.3.0"
    }
    kubernetes = {
      source = "hashicorp/kubernetes"
      version = "2.5.0"
    }
  }
  required_version = ">= 1"
}
	terraform {
	backend "local" {
	path = "../states/cert_manager.tfstate"
	}
	}
	data "terraform_remote_state" "cluster" {
	backend = "local"

	config = {
	path = "../states/cluster.tfstate"
	}
	}
	resource "kubernetes_namespace" "cm" {
	metadata {
	name = "cert-manager"
	}
	}
	resource "helm_release" "cm" {
	name = "cm"
	namespace = kubernetes_namespace.cm.metadata[0].name
	create_namespace = false
	chart = "cert-manager"
	repository = "https://charts.jetstack.io"
	version = "v1.5.3"
	values = [
	file("values.yaml")
	]
	}
	provider google {}

	data "google_client_config" "default" {}

	provider kubernetes {
	host = "https://${data.terraform_remote_state.cluster.outputs.cluster_endpoint}"
	token = data.google_client_config.default.access_token
	cluster_ca_certificate = base64decode(data.terraform_remote_state.cluster.outputs.cacert)
	}

	provider "helm" {
	kubernetes {
	host = "https://${data.terraform_remote_state.cluster.outputs.cluster_endpoint}"
	token = data.google_client_config.default.access_token
	cluster_ca_certificate = base64decode(data.terraform_remote_state.cluster.outputs.cacert)
	}
	}
	global:
	podSecurityPolicy:
	enabled: true
	useAppArmor: true
	prometheus:
	enabled: false
	installCRDs: true
	terraform {
	required_providers {
	google = {
	source = "hashicorp/google"
	version = "3.85.0"
	}
	helm = {
	source = "hashicorp/helm"
	version = "2.3.0"
	}
	kubernetes = {
	source = "hashicorp/kubernetes"
	version = "2.5.0"
	}
	}
	required_version = ">= 1"
	}