delete wildcard

helm/cert-manager-webhook-ovh/ops/Chart.yaml

@@ -1,7 +0,0 @@
-apiVersion: v2
-name: cert-manager-webhook-ovh
-description: Webhook OVH pour cert-manager - Ajoute le support DNS-01 pour OVH
-type: application
-version: 1.0.0
-appVersion: "1.0.0"
-

helm/cert-manager-webhook-ovh/ops/README.md

@@ -1,67 +0,0 @@
-# Cert-manager Webhook OVH
-
-Ce chart Helm déploie le webhook OVH pour cert-manager, permettant d'utiliser le DNS-01 challenge avec OVH comme fournisseur DNS.
-
-## Installation via ArgoCD
-
-Ce chart est déployé automatiquement via l'ApplicationSet `cert-manager-webhook-ovh` dans ArgoCD.
-
-## Image Docker
-
-**Important** : L'image Docker officielle pour cert-manager-webhook-ovh peut ne pas exister. Vous avez deux options :
-
-### Option 1 : Utiliser une image existante
-
-Si une image existe sur un registry (Docker Hub, Quay.io, etc.), mettez à jour `values.yaml` :
-
-```yaml
-image:
-  repository: votre-registry/cert-manager-webhook-ovh
-  tag: "v1.0.0"
-```
-
-### Option 2 : Construire l'image vous-même
-
-1. Clonez le repository du webhook OVH :
-```bash
-git clone https://github.com/cert-manager/webhook-ovh.git
-cd webhook-ovh
-```
-
-2. Construisez l'image :
-```bash
-docker build -t votre-registry/cert-manager-webhook-ovh:v1.0.0 .
-docker push votre-registry/cert-manager-webhook-ovh:v1.0.0
-```
-
-3. Mettez à jour `values.yaml` avec votre image.
-
-## Configuration
-
-Le `groupName` dans `values.yaml` doit correspondre exactement à celui configuré dans le ClusterIssuer :
-
-```yaml
-groupName: acme.gkdomaine.fr
-```
-
-## Vérification
-
-Après déploiement :
-
-```bash
-# Vérifier les pods
-kubectl get pods -n cert-manager-ops | grep webhook-ovh
-
-# Vérifier les logs
-kubectl logs -n cert-manager-ops -l app=cert-manager-webhook-ovh
-
-# Vérifier les webhooks
-kubectl get mutatingwebhookconfiguration cert-manager-webhook-ovh
-kubectl get validatingwebhookconfiguration cert-manager-webhook-ovh
-```
-
-## Documentation
-
-- [cert-manager Webhooks](https://cert-manager.io/docs/concepts/webhook/)
-- [DNS-01 Challenge](https://cert-manager.io/docs/configuration/acme/dns01/)
-

helm/cert-manager-webhook-ovh/ops/templates/deployment.yaml

@@ -1,63 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: cert-manager-webhook-ovh
-  namespace: {{ .Values.namespace }}
-  labels:
-    app: cert-manager-webhook-ovh
-    app.kubernetes.io/name: cert-manager-webhook-ovh
-    app.kubernetes.io/component: webhook
-spec:
-  replicas: {{ .Values.replicaCount }}
-  selector:
-    matchLabels:
-      app: cert-manager-webhook-ovh
-  template:
-    metadata:
-      labels:
-        app: cert-manager-webhook-ovh
-        app.kubernetes.io/name: cert-manager-webhook-ovh
-        app.kubernetes.io/component: webhook
-    spec:
-      serviceAccountName: cert-manager-webhook-ovh
-      containers:
-      - name: webhook
-        image: {{ .Values.image.repository }}:{{ .Values.image.tag }}
-        imagePullPolicy: {{ .Values.image.pullPolicy }}
-        args:
-        - --v=2
-        - --group-name={{ .Values.groupName }}
-        - --secure-port=10250
-        ports:
-        - name: https
-          containerPort: 10250
-          protocol: TCP
-        livenessProbe:
-          httpGet:
-            path: /healthz
-            port: 6080
-            scheme: HTTP
-          initialDelaySeconds: 60
-          periodSeconds: 10
-          timeoutSeconds: 1
-          successThreshold: 1
-          failureThreshold: 3
-        readinessProbe:
-          httpGet:
-            path: /healthz
-            port: 6080
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          timeoutSeconds: 1
-          successThreshold: 1
-          failureThreshold: 3
-        resources:
-          {{- toYaml .Values.resources | nindent 10 }}
-      nodeSelector:
-        {{- toYaml .Values.nodeSelector | nindent 8 }}
-      tolerations:
-        {{- toYaml .Values.tolerations | nindent 8 }}
-      affinity:
-        {{- toYaml .Values.affinity | nindent 8 }}
-

helm/cert-manager-webhook-ovh/ops/templates/mutating-webhook.yaml

@@ -1,31 +0,0 @@
-apiVersion: admissionregistration.k8s.io/v1
-kind: MutatingWebhookConfiguration
-metadata:
-  name: cert-manager-webhook-ovh
-  labels:
-    app: cert-manager-webhook-ovh
-    app.kubernetes.io/name: cert-manager-webhook-ovh
-webhooks:
-- name: webhook.cert-manager.io
-  admissionReviewVersions:
-  - v1
-  - v1beta1
-  clientConfig:
-    service:
-      name: cert-manager-webhook-ovh
-      namespace: {{ .Values.namespace }}
-      path: "/mutate"
-  failurePolicy: Fail
-  sideEffects: None
-  rules:
-  - apiGroups:
-    - cert-manager.io
-    - acme.cert-manager.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - "*/*"
-

helm/cert-manager-webhook-ovh/ops/templates/rbac.yaml

@@ -1,31 +0,0 @@
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: cert-manager-webhook-ovh:webhook-requester
-  labels:
-    app: cert-manager-webhook-ovh
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - list
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: cert-manager-webhook-ovh:webhook-requester
-  labels:
-    app: cert-manager-webhook-ovh
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: cert-manager-webhook-ovh:webhook-requester
-subjects:
-- apiGroup: ""
-  kind: ServiceAccount
-  name: cert-manager-webhook-ovh
-  namespace: {{ .Values.namespace }}
-

helm/cert-manager-webhook-ovh/ops/templates/service.yaml

@@ -1,19 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: cert-manager-webhook-ovh
-  namespace: {{ .Values.namespace }}
-  labels:
-    app: cert-manager-webhook-ovh
-    app.kubernetes.io/name: cert-manager-webhook-ovh
-    app.kubernetes.io/component: webhook
-spec:
-  type: ClusterIP
-  ports:
-  - name: https
-    port: 443
-    targetPort: 10250
-    protocol: TCP
-  selector:
-    app: cert-manager-webhook-ovh
-

helm/cert-manager-webhook-ovh/ops/templates/serviceaccount.yaml

@@ -1,9 +0,0 @@
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: cert-manager-webhook-ovh
-  namespace: {{ .Values.namespace }}
-  labels:
-    app: cert-manager-webhook-ovh
-    app.kubernetes.io/name: cert-manager-webhook-ovh
-

helm/cert-manager-webhook-ovh/ops/templates/validating-webhook.yaml

@@ -1,31 +0,0 @@
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  name: cert-manager-webhook-ovh
-  labels:
-    app: cert-manager-webhook-ovh
-    app.kubernetes.io/name: cert-manager-webhook-ovh
-webhooks:
-- name: webhook.cert-manager.io
-  admissionReviewVersions:
-  - v1
-  - v1beta1
-  clientConfig:
-    service:
-      name: cert-manager-webhook-ovh
-      namespace: {{ .Values.namespace }}
-      path: "/validate"
-  failurePolicy: Fail
-  sideEffects: None
-  rules:
-  - apiGroups:
-    - cert-manager.io
-    - acme.cert-manager.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - "*/*"
-

helm/cert-manager-webhook-ovh/ops/values.yaml

@@ -1,31 +0,0 @@
-# Configuration pour cert-manager-webhook-ovh
-# GroupName pour le webhook (doit correspondre à celui du ClusterIssuer)
-groupName: acme.gkdomaine.fr
-
-# Namespace où installer le webhook
-namespace: cert-manager-ops
-
-# Image du webhook
-# Image officielle depuis GitHub Container Registry (maintenue par baarde)
-image:
-  repository: ghcr.io/baarde/cert-manager-webhook-ovh
-  tag: "v0.6.1"
-  pullPolicy: IfNotPresent
-
-# Ressources
-resources:
-  requests:
-    memory: "64Mi"
-    cpu: "50m"
-  limits:
-    memory: "128Mi"
-    cpu: "200m"
-
-# Réplicas
-replicaCount: 1
-
-# Node selector, tolerations, etc.
-nodeSelector: {}
-tolerations: []
-affinity: {}
-