Request: option to add custom certificate

[michaelsstuff]

The option to add an existing certificates to the hetzner loadbalaner.
In my case I have an cloudflare origin server certificate.

[michaelsstuff]

actually nevermind. I think that is better served with a proper ingres deployment.

[mysticaltech]

Hey @michaelsstuff, I use Cloudflare's origin certificates myself. They work wonderfully with Traefik too, here's a tutorial I previously made to use them #18.

[michaelsstuff]

:-D Thanks, exactly how I did it now.

[mysticaltech]

Now if you add external-dns, it becomes magic hehe! Let me know if you haven't set it up already, will share a quick example.

[michaelsstuff]

Already got it with external dns running :-D (also cloudflare)

But is there a way to add a terraform provider without overwriting the versions.tf? This is the only downside, as it probably will create merge conficts in the future.

The idea is to clone this project, then add 2 files (cloudflare.tf and terraform.tfvars) and your would be good to go.
But i do have to edit the versions.tf and add cloudflare/cloudflare :-/

[mysticaltech]

In the future, we will offer this project a terraform module, but we're not there yet. Hopefully soon. For now, you could maintain a fork, and Github makes it easy to stay in sync with upstream.

[phaer]

@michaelsstuff Only saw this just now. But while not "officially supported" yet, it already is possible to use this project as a terraform module. Just clone it and use it as normal

module "kube-hetzner" {
  source = "./kube-hetzner"

  # Same as terraform.tfvars.example
  hcloud_token = var.hcloud_token
  # [...]
}

I've been using this approach for a few weeks already to add additional resources like cloudflare_records