From 0ccb40b8fcb854ce7d57aa0483253fd33e347823 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Beatrice=20Dellac=C3=A0?= <hello@beatrice.wtf>
Date: Sun, 6 Apr 2025 21:13:03 +0200
Subject: [PATCH] fix tls for minio

---
 deploy/minio-tenant/cert-job.yaml      | 29 ++++++++++++++++++++++++++
 deploy/minio-tenant/certificate.yaml   | 14 -------------
 deploy/minio-tenant/kustomization.yaml |  2 +-
 3 files changed, 30 insertions(+), 15 deletions(-)
 create mode 100644 deploy/minio-tenant/cert-job.yaml
 delete mode 100644 deploy/minio-tenant/certificate.yaml

diff --git a/deploy/minio-tenant/cert-job.yaml b/deploy/minio-tenant/cert-job.yaml
new file mode 100644
index 0000000..ec07563
--- /dev/null
+++ b/deploy/minio-tenant/cert-job.yaml
@@ -0,0 +1,29 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: convert-tls-secret
+  namespace: minio-tenant
+spec:
+  template:
+    spec:
+      restartPolicy: OnFailure
+      containers:
+        - name: sync-secret
+          image: bitnami/kubectl:latest
+          command:
+            - /bin/sh
+            - -c
+            - |
+              kubectl get secret minio-tls -n minio-tenant -o json | jq '{
+                apiVersion: "v1",
+                kind: "Secret",
+                metadata: {
+                  name: "panic-minio-tls",
+                  namespace: "minio-tenant"
+                },
+                type: "Opaque",
+                data: {
+                  "public.crt": .data["tls.crt"],
+                  "private.key": .data["tls.key"]
+                }
+              }' | kubectl apply -f -
\ No newline at end of file
diff --git a/deploy/minio-tenant/certificate.yaml b/deploy/minio-tenant/certificate.yaml
deleted file mode 100644
index 32fba7a..0000000
--- a/deploy/minio-tenant/certificate.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: panic-minio-cert
-  namespace: minio-tenant
-spec:
-  secretName: panic-minio-tls
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
-  commonName: s3.minio.panic.haus
-  dnsNames:
-    - s3.minio.panic.haus
-    - console.minio.panic.haus
\ No newline at end of file
diff --git a/deploy/minio-tenant/kustomization.yaml b/deploy/minio-tenant/kustomization.yaml
index 4fe5906..adbdbfa 100644
--- a/deploy/minio-tenant/kustomization.yaml
+++ b/deploy/minio-tenant/kustomization.yaml
@@ -6,7 +6,7 @@ namespace: minio-tenant
 resources:
   - namespace.yaml
   - secret.yaml
-  - certificate.yaml
+  - cert-job.yaml
   - tenant.yaml
   - ingress.yaml
   - svc-minio.yaml