-
Notifications
You must be signed in to change notification settings - Fork 0
MinIO Server Certificates a.k.a externalCertSecret
Cesar Celis Hernandez edited this page May 12, 2023
·
2 revisions
![Screenshot 2023-05-12 at 2 09 45 PM](https://private-user-images.githubusercontent.com/6667358/238047731-bb8d24ee-4cf1-46e7-8721-8d461ce578bb.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.DpdGFaMERkcrBsyZ7Wmzt-cbPyWqG3pm0YAhs2-emx0)
Save inside MinIO container at path: /tmp/certs
bash-4.4$ ls
CAs hostname-1 private.key public.crt
Secret name can be something like: main-storage-enqpg-external-server-certificate-0
spec:
externalCertSecret:
- name: <tenant-name>-enqpg-external-server-certificate-0
type: kubernetes.io/tls
apiVersion: v1
data:
tls.crt: <base64value>
tls.key: <base64value>
immutable: true
kind: Secret
metadata:
labels:
v1.min.io/tenant: main-storage
name: <tenant-name>-enqpg-external-server-certificate-0
namespace: <tenant-namespace>
type: kubernetes.io/tls