apiVersion: v1 kind: Secret metadata: name: hetzner-dns-credentials namespace: cert-manager type: Opaque stringData: api-key: {{ .Values.hetzner.apiToken }} --- apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: letsencrypt-incngrnt spec: acme: server: https://acme-v02.api.letsencrypt.org/directory email: {{ .Values.acme.email }} privateKeySecretRef: name: letsencrypt-incngrnt-private-key solvers: - dns01: webhook: groupName: acme.hetzner.com solverName: hetzner config: secretName: hetzner-dns-credentials zoneName: incngrnt.ca apiUrl: https://dns.hetzner.com/api/v1 --- apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: letsencrypt-goatchat spec: acme: server: https://acme-v02.api.letsencrypt.org/directory email: {{ .Values.acme.email }} privateKeySecretRef: name: letsencrypt-goatchat-private-key solvers: - dns01: webhook: groupName: acme.hetzner.com solverName: hetzner config: secretName: hetzner-dns-credentials zoneName: goatchat.ca apiUrl: https://dns.hetzner.com/api/v1 --- apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: letsencrypt-53ll spec: acme: server: https://acme-v02.api.letsencrypt.org/directory email: {{ .Values.acme.email }} privateKeySecretRef: name: letsencrypt-53ll-private-key solvers: - dns01: webhook: groupName: acme.hetzner.com solverName: hetzner config: secretName: hetzner-dns-credentials zoneName: 53ll.ca apiUrl: https://dns.hetzner.com/api/v1 --- apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: letsencrypt-kgnot spec: acme: server: https://acme-v02.api.letsencrypt.org/directory email: {{ .Values.acme.email }} privateKeySecretRef: name: letsencrypt-kgnot-private-key solvers: - dns01: webhook: groupName: acme.hetzner.com solverName: hetzner config: secretName: hetzner-dns-credentials zoneName: kgnot.ca apiUrl: https://dns.hetzner.com/api/v1