Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
---
# INGRESS
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/whitelist-source-range: 0.0.0.0/0,::/0
creationTimestamp: 2019-12-30T23:04:50Z
generateName: cm-acme-http-solver-
generation: 1
labels:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
name: cm-acme-http-solver-ft6rm
namespace: default
ownerReferences:
- apiVersion: cert-manager.io/v1alpha2
blockOwnerDeletion: true
controller: true
kind: Challenge
name: example-staging-2888249903-3145886218-1315209217
uid: c76933c2-2b58-11ea-89a0-42010aa20067
resourceVersion: "1289522"
selfLink: /apis/extensions/v1beta1/namespaces/default/ingresses/cm-acme-http-solver-ft6rm
uid: c837a894-2b58-11ea-89a0-42010aa20067
spec:
rules:
- host: example.com
http:
paths:
- backend:
serviceName: cm-acme-http-solver-7l45p
servicePort: 8089
path: /.well-known/acme-challenge/[redacted]
status:
loadBalancer: {}
---
# SERVICE
apiVersion: v1
kind: Service
metadata:
annotations:
auth.istio.io/8089: NONE
creationTimestamp: 2019-12-30T23:04:50Z
generateName: cm-acme-http-solver-
labels:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
name: cm-acme-http-solver-7l45p
namespace: default
ownerReferences:
- apiVersion: cert-manager.io/v1alpha2
blockOwnerDeletion: true
controller: true
kind: Challenge
name: example-staging-2888249903-3145886218-1315209217
uid: c76933c2-2b58-11ea-89a0-42010aa20067
resourceVersion: "1289519"
selfLink: /api/v1/namespaces/default/services/cm-acme-http-solver-7l45p
uid: c83209db-2b58-11ea-89a0-42010aa20067
spec:
clusterIP: 10.4.3.248
externalTrafficPolicy: Cluster
ports:
- name: http
nodePort: 30108
port: 8089
protocol: TCP
targetPort: 8089
selector:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
sessionAffinity: None
type: NodePort
status:
loadBalancer: {}
---
# POD
apiVersion: v1
kind: Service
metadata:
annotations:
auth.istio.io/8089: NONE
creationTimestamp: 2019-12-30T23:04:50Z
generateName: cm-acme-http-solver-
labels:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
name: cm-acme-http-solver-7l45p
namespace: default
ownerReferences:
- apiVersion: cert-manager.io/v1alpha2
blockOwnerDeletion: true
controller: true
kind: Challenge
name: example-staging-2888249903-3145886218-1315209217
uid: c76933c2-2b58-11ea-89a0-42010aa20067
resourceVersion: "1289519"
selfLink: /api/v1/namespaces/default/services/cm-acme-http-solver-7l45p
uid: c83209db-2b58-11ea-89a0-42010aa20067
spec:
clusterIP: 10.4.3.248
externalTrafficPolicy: Cluster
ports:
- name: http
nodePort: 30108
port: 8089
protocol: TCP
targetPort: 8089
selector:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
sessionAffinity: None
type: NodePort
status:
loadBalancer: {}
joshuaflark@Joshuas-MBP kube-example % kubectl get pod cm-acme-http-solver-nsxf7 -o yaml
apiVersion: v1
kind: Pod
metadata:
annotations:
sidecar.istio.io/inject: "false"
creationTimestamp: 2019-12-30T23:04:50Z
generateName: cm-acme-http-solver-
labels:
acme.cert-manager.io/http-domain: "617481509"
acme.cert-manager.io/http-token: "495193513"
acme.cert-manager.io/http01-solver: "true"
name: cm-acme-http-solver-nsxf7
namespace: default
ownerReferences:
- apiVersion: cert-manager.io/v1alpha2
blockOwnerDeletion: true
controller: true
kind: Challenge
name: example-staging-2888249903-3145886218-1315209217
uid: c76933c2-2b58-11ea-89a0-42010aa20067
resourceVersion: "1289545"
selfLink: /api/v1/namespaces/default/pods/cm-acme-http-solver-nsxf7
uid: c82ec978-2b58-11ea-89a0-42010aa20067
spec:
containers:
- args:
- --listen-port=8089
- --domain=example.com
- --token=[redacted]
- --key=[redacted]
image: quay.io/jetstack/cert-manager-acmesolver:v0.11.1
imagePullPolicy: IfNotPresent
name: acmesolver
ports:
- containerPort: 8089
name: http
protocol: TCP
resources:
limits:
cpu: 100m
memory: 64Mi
requests:
cpu: 10m
memory: 64Mi
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- mountPath: /var/run/secrets/kubernetes.io/serviceaccount
name: default-token-79qbt
readOnly: true
dnsPolicy: ClusterFirst
enableServiceLinks: true
nodeName: gke-production-default-pool-283725e4-jh43
priority: 0
restartPolicy: OnFailure
schedulerName: default-scheduler
securityContext: {}
serviceAccount: default
serviceAccountName: default
terminationGracePeriodSeconds: 30
tolerations:
- effect: NoExecute
key: node.kubernetes.io/not-ready
operator: Exists
tolerationSeconds: 300
- effect: NoExecute
key: node.kubernetes.io/unreachable
operator: Exists
tolerationSeconds: 300
volumes:
- name: default-token-79qbt
secret:
defaultMode: 420
secretName: default-token-79qbt
status:
conditions:
- lastProbeTime: null
lastTransitionTime: 2019-12-30T23:04:50Z
status: "True"
type: Initialized
- lastProbeTime: null
lastTransitionTime: 2019-12-30T23:04:54Z
status: "True"
type: Ready
- lastProbeTime: null
lastTransitionTime: 2019-12-30T23:04:54Z
status: "True"
type: ContainersReady
- lastProbeTime: null
lastTransitionTime: 2019-12-30T23:04:50Z
status: "True"
type: PodScheduled
containerStatuses:
- containerID: docker://a1537e1719a5e273c08c2de82470a6cb52d8d8870b063114bb5a9e72a23b022c
image: quay.io/jetstack/cert-manager-acmesolver:v0.11.1
imageID: docker-pullable://quay.io/jetstack/cert-manager-acmesolver@sha256:1ffcae18dbf28de78651cd9f8734720efe47049c10c51470b69351918c317a0c
lastState: {}
name: acmesolver
ready: true
restartCount: 0
state:
running:
startedAt: 2019-12-30T23:04:53Z
hostIP: 10.162.0.63
phase: Running
podIP: 10.0.2.14
qosClass: Burstable
startTime: 2019-12-30T23:04:50Z
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.