From 87814e5040d3ea1e55fda34bc735f5eda02e53ad Mon Sep 17 00:00:00 2001
From: Siddhesh Mhadnak <siddhesh.mhadnak@outlook.com>
Date: Sat, 31 Aug 2024 22:51:02 +0530
Subject: [PATCH 1/2] fix(cert-manager): use `DNS-01` challenges, instead of
 `HTTP-01` challenges

Signed-off-by: Siddhesh Mhadnak <siddhesh.mhadnak@outlook.com>
---
 .../{cluster_issuer.yaml => cluster-issuer.yaml}     | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)
 rename kubernetes/manifests/cert-manager/{cluster_issuer.yaml => cluster-issuer.yaml} (53%)

diff --git a/kubernetes/manifests/cert-manager/cluster_issuer.yaml b/kubernetes/manifests/cert-manager/cluster-issuer.yaml
similarity index 53%
rename from kubernetes/manifests/cert-manager/cluster_issuer.yaml
rename to kubernetes/manifests/cert-manager/cluster-issuer.yaml
index 2106353..ec13ceb 100644
--- a/kubernetes/manifests/cert-manager/cluster_issuer.yaml
+++ b/kubernetes/manifests/cert-manager/cluster-issuer.yaml
@@ -4,15 +4,17 @@ kind: ClusterIssuer
 
 metadata:
   name: letsencrypt
-  namespace: cert-manager
 
 spec:
   acme:
-    email: bradley.reynolds@darbia.dev
+    email: siddhesh.mhadnak@outlook.com
     server: https://acme-v02.api.letsencrypt.org/directory
     privateKeySecretRef:
       name: letsencrypt-issuer-account-key
     solvers:
-      - http01:
-          ingress:
-            ingressClassName: nginx
+      - dns01:
+          cloudflare:
+            email: siddhesh.mhadnak@outlook.com
+            apiTokenSecretRef:
+              name: cloudflare
+              key: token

From b0ad908f124e8e1d7809159538fb47337826f31d Mon Sep 17 00:00:00 2001
From: Siddhesh Mhadnak <siddhesh.mhadnak@outlook.com>
Date: Mon, 2 Sep 2024 01:21:54 +0530
Subject: [PATCH 2/2] fix(cert-manager): use the VipyrSec Support email as the
 contact email

Also, removed the `.spec.acme.solvers[*].dns01.cloudflare.email`, since,
```bash
kubectl explain --api-version=cert-manager.io/v1 ClusterIssuer.spec.acme.solvers.dns01.cloudflare.email
# Email of the account, only required when using API key based authentication.
```
and we're using API token based authentication.
---
 kubernetes/manifests/cert-manager/cluster-issuer.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/kubernetes/manifests/cert-manager/cluster-issuer.yaml b/kubernetes/manifests/cert-manager/cluster-issuer.yaml
index ec13ceb..6aab595 100644
--- a/kubernetes/manifests/cert-manager/cluster-issuer.yaml
+++ b/kubernetes/manifests/cert-manager/cluster-issuer.yaml
@@ -7,14 +7,13 @@ metadata:
 
 spec:
   acme:
-    email: siddhesh.mhadnak@outlook.com
+    email: support@vipyrsec.com
     server: https://acme-v02.api.letsencrypt.org/directory
     privateKeySecretRef:
       name: letsencrypt-issuer-account-key
     solvers:
       - dns01:
           cloudflare:
-            email: siddhesh.mhadnak@outlook.com
             apiTokenSecretRef:
               name: cloudflare
               key: token