Kubernetes cert-manager

This module provides our standard set up for cert-manager.

Providers

The following providers are needed by this module:

helm (2.12.1)
kubectl (2.0.4)
kubernetes (2.27.0)
pf (0.0.3)
random (3.6.0)

Required Inputs

No required inputs.

Optional Inputs

The following input variables are optional (have default values):

canary_enabled

Description: Whether to add canary checks to the deployed systems

Type: bool

Default: false

cert_manager_version

Description: The version of cert-manager to deploy

Type: string

Default: "1.14.4"

enhanced_ha_enabled

Description: Whether to add extra high-availability scheduling constraints at the trade-off of increased cost

Type: bool

Default: true

log_verbosity

Description: The log verbosity (0-9) for the cert-manager pods

Type: number

Default: 0

monitoring_enabled

Description: Whether to add active monitoring to the deployed systems

Type: bool

Default: false

panfactum_scheduler_enabled

Description: Whether to use the Panfactum pod scheduler with enhanced bin-packing

Type: bool

Default: false

pull_through_cache_enabled

Description: Whether to use the ECR pull through cache for the deployed images

Type: bool

Default: true

self_generated_certs_enabled

Description: Whether to enable self-generated webhook certs (only use on initial installation)

Type: bool

Default: true

vpa_enabled

Description: Whether the VPA resources should be enabled

Type: bool

Default: false

Outputs

The following outputs are exported:

namespace

Description: n/a

service_account

Description: n/a

Usage

No notes