docs: 📚️ improve EXAMPLES on acme resolver

traefik · Apr 8, 2024 · 2252aba · 2252aba
1 parent d57d4a9
commit 2252aba
Show file tree

Hide file tree

Showing 3 changed files with 35 additions and 6 deletions.
diff --git a/EXAMPLES.md b/EXAMPLES.md
@@ -348,6 +348,21 @@ By default, Kubernetes recursively changes ownership and permissions for the con
 => An initContainer can be used to avoid an issue on this sensitive file.
 See [#396](https://github.com/traefik/traefik-helm-chart/issues/396) for more details.
 
+**Step 1**: Create `Secret` with CloudFlare token:
+
+```yaml
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: cloudflare
+type: Opaque
+stringData:
+  token: TTT
+```
+
+**Step 2**:
+
 ```yaml
 persistence:
   enabled: true
@@ -361,8 +376,8 @@ env:
   - name: CF_DNS_API_TOKEN
     valueFrom:
       secretKeyRef:
-        name: yyy
-        key: zzz
+        name: cloudflare
+        key: token
 deployment:
   initContainers:
     - name: volume-permissions
@@ -373,6 +388,20 @@ deployment:
         name: data
 ```
 
+and after, in an `IngressRoute`:
+
+```yaml
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRoute
+metadata:
+  name: [...]
+spec:
+  entryPoints: [...]
+  routes: [...]
+  tls:
+    certResolver: letsencrypt
+```
+
 This example needs a CloudFlare token in a Kubernetes `Secret` and a working `StorageClass`.
 
 See [the list of supported providers](https://doc.traefik.io/traefik/https/acme/#providers) for others.

diff --git a/traefik/templates/NOTES.txt b/traefik/templates/NOTES.txt
@@ -7,8 +7,8 @@ Traefik Proxy {{ .Values.image.tag | default .Chart.AppVersion }} has been deplo
 
 🚨 When enabling persistence for certificates, permissions on acme.json can be
 lost when Traefik restarts. You can ensure correct permissions with an
-initContainer. See https://github.com/traefik/traefik-helm-chart/issues/396 for
-more info. 🚨
+initContainer. See https://github.com/traefik/traefik-helm-chart/blob/master/EXAMPLES.md#use-traefik-native-lets-encrypt-integration-without-cert-manager
+for more info. 🚨
 
 {{- end }}
 {{- end }}

diff --git a/traefik/tests/notes_test.yaml b/traefik/tests/notes_test.yaml
@@ -67,8 +67,8 @@ tests:
 
             🚨 When enabling persistence for certificates, permissions on acme.json can be
             lost when Traefik restarts. You can ensure correct permissions with an
-            initContainer. See https://github.com/traefik/traefik-helm-chart/issues/396 for
-            more info. 🚨
+            initContainer. See https://github.com/traefik/traefik-helm-chart/blob/master/EXAMPLES.md#use-traefik-native-lets-encrypt-integration-without-cert-manager
+            for more info. 🚨
   - it: should display warning when enabling labelSelector without applying it
     set:
       commonLabels: