feat: allow for custom clusterissuer and certificate secretName when atmosphere is not responsible for cert-manager.
diff --git a/roles/openstack_helm_ingress/tasks/main.yml b/roles/openstack_helm_ingress/tasks/main.yml
index 6bbe426..8fcbd19 100644
--- a/roles/openstack_helm_ingress/tasks/main.yml
+++ b/roles/openstack_helm_ingress/tasks/main.yml
@@ -29,7 +29,7 @@
http:
paths: "{{ _openstack_helm_ingress_paths }}"
tls:
- - secretName: "{{ openstack_helm_ingress_service_name }}-certs"
+ - secretName: "{{ openstack_helm_ingress_secretname | default(openstack_helm_ingress_service_name + '-certs') }}"
hosts:
- "{{ openstack_helm_endpoints[openstack_helm_ingress_endpoint]['host_fqdn_override']['public']['host'] }}"
# NOTE(mnaser): The Atmosphere operator is so fast that the Ingress webhook
diff --git a/roles/openstack_helm_ingress/vars/main.yml b/roles/openstack_helm_ingress/vars/main.yml
index 4c860cf..060b7c9 100644
--- a/roles/openstack_helm_ingress/vars/main.yml
+++ b/roles/openstack_helm_ingress/vars/main.yml
@@ -13,7 +13,7 @@
# under the License.
_openstack_helm_ingress_annotations:
- cert-manager.io/cluster-issuer: atmosphere
+ cert-manager.io/cluster-issuer: "{{ openstack_helm_ingress_clusterissuer | default('atmosphere') }}"
_openstack_helm_ingress_paths: "{{ openstack_helm_ingress_paths + __openstack_helm_ingress_paths }}"
__openstack_helm_ingress_paths: