fix tls for minio

deploy/minio-tenant/cert-job.yaml

@@ -0,0 +1,29 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: convert-tls-secret
+  namespace: minio-tenant
+spec:
+  template:
+    spec:
+      restartPolicy: OnFailure
+      containers:
+        - name: sync-secret
+          image: bitnami/kubectl:latest
+          command:
+            - /bin/sh
+            - -c
+            - |
+              kubectl get secret minio-tls -n minio-tenant -o json | jq '{
+                apiVersion: "v1",
+                kind: "Secret",
+                metadata: {
+                  name: "panic-minio-tls",
+                  namespace: "minio-tenant"
+                },
+                type: "Opaque",
+                data: {
+                  "public.crt": .data["tls.crt"],
+                  "private.key": .data["tls.key"]
+                }
+              }' | kubectl apply -f -

deploy/minio-tenant/certificate.yaml

@@ -1,14 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: panic-minio-cert
-  namespace: minio-tenant
-spec:
-  secretName: panic-minio-tls
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
-  commonName: s3.minio.panic.haus
-  dnsNames:
-    - s3.minio.panic.haus
-    - console.minio.panic.haus

deploy/minio-tenant/kustomization.yaml

@@ -6,7 +6,7 @@ namespace: minio-tenant
 resources:
   - namespace.yaml
   - secret.yaml
-  - certificate.yaml
+  - cert-job.yaml
   - tenant.yaml
   - ingress.yaml
   - svc-minio.yaml