Skip to content

Instantly share code, notes, and snippets.

View b44rawat's full-sized avatar
:octocat:
python

bhupender rawat b44rawat

:octocat:
python
6 followers · 3 following
  • Opstree Solutions
  • New Delhi, India
View GitHub Profile
@b44rawat
b44rawat / clusterissuer-prod.yaml
Created March 9, 2023 16:59
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: cert-manager-staging-test
spec:
acme:
email: xxxxx-xxxxx@xxxxx.xxx
server: https://acme-v02.api.letsencrypt.org/directory
privateKeySecretRef:
name: cert-manager-staging-test-secret
@b44rawat
b44rawat / ingress-to-test-cert-manager.yaml
Created March 9, 2023 16:58
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: test-ingress
namespace: default
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/rewrite-target: /
# cert-manager.io/issuer: "cert-manager-staging-test"
spec:
@b44rawat
b44rawat / cert-test.yaml
Created March 9, 2023 16:57
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: cert-manager-staging-test-cert
namespace: default
spec:
secretName: cert-manager-staging-test-staging-secret
issuerRef:
name: cert-manager-staging-test
kind: ClusterIssuer
@b44rawat
b44rawat / issuer.yaml
Created March 9, 2023 16:56
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: cert-manager-staging-test
spec:
acme:
email: xxxxx-xxxxx@xxxxx.xxx
server: https://acme-staging-v02.api.letsencrypt.org/directory
privateKeySecretRef:
name: cert-manager-staging-test-secret
@b44rawat
b44rawat / accounty-secret-key.yaml
Created March 9, 2023 16:55
It will give base 64 encoded secret which we will use to create a kubernetes secret for secretAccessKeySecretRef reference.
apiVersion: v1
kind: Secret
metadata:
name: awssecretkey
namespace: cert-manager
type: Opaque
data:
secret-access-key: NUNFMXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX=
@b44rawat
b44rawat / route-53-acccess-policy-for-cert-manager.json
Created March 9, 2023 16:53
This permission required to change or read information of the Hosted zone.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "route53:GetChange",
"Resource": "arn:aws:route53:::change/*"
},
{
"Effect": "Allow",
@b44rawat
b44rawat / coralogix-filebeat-deployment.yaml
Created October 22, 2022 07:25
Coralogix & filebeat integration for o365 Logs
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: coralogix-filebeat
namespace: kube-system
labels:
k8s-app: filebeat
spec:
replicas: 1
@b44rawat
b44rawat / o365-configmap.yaml
Created October 22, 2022 07:23
Coralogix & filebeat integration for o365 Logs
---
apiVersion: v1
kind: ConfigMap
metadata:
name: o365-configmap
namespace: kube-system
labels:
k8s-app: filebeat
data:
o365.yml: |-
@b44rawat
b44rawat / filebeat-configmap.yaml
Created October 22, 2022 07:20
Coralogix & filebeat integration for o365 Logs
---
apiVersion: v1
kind: ConfigMap
metadata:
name: filebeat-configmap
namespace: kube-system
labels:
k8s-app: filebeat
data:
filebeat.yml: |-
@b44rawat
b44rawat / auth-auth-configmap.yaml
Created October 16, 2022 08:12
EKS: IAM User Access [aws-auth]
apiVersion: v1
data:
mapRoles: |
- groups:
- system:bootstrappers
- system:nodes
rolearn: arn:aws:iam::XXXXXXXXXXXX:role/eksctl-Test-EKS-nodegroup-ekstest-NodeInstanceRole-XXXXXXXXXX
username: system:node:{{EC2PrivateDNSName}}
mapUsers: |
- userarn: arn:aws:iam::XXXXXXXXXXXX:user/eksuser