From f1294e315490c717313f798a14196f5ffae5cf14 Mon Sep 17 00:00:00 2001
From: aggarwalakshun <aggarwalakshun@gmail.com>
Date: Sat, 27 Dec 2025 13:54:18 +0000
Subject: [PATCH] add cert manager

---
 clusters/ipv6/cert-manager/cluster-issuer.yml | 17 +++++++++++
 clusters/ipv6/cert-manager/helm-release.yml   | 28 +++++++++++++++++++
 clusters/ipv6/cert-manager/helm-repo.yml      | 10 +++++++
 clusters/ipv6/cert-manager/namespace.yml      |  8 ++++++
 4 files changed, 63 insertions(+)
 create mode 100644 clusters/ipv6/cert-manager/cluster-issuer.yml
 create mode 100644 clusters/ipv6/cert-manager/helm-release.yml
 create mode 100644 clusters/ipv6/cert-manager/helm-repo.yml
 create mode 100644 clusters/ipv6/cert-manager/namespace.yml

diff --git a/clusters/ipv6/cert-manager/cluster-issuer.yml b/clusters/ipv6/cert-manager/cluster-issuer.yml
new file mode 100644
index 0000000..fe6d933
--- /dev/null
+++ b/clusters/ipv6/cert-manager/cluster-issuer.yml
@@ -0,0 +1,17 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-cloudflare
+spec:
+  acme:
+    email: aggarwalakshun@gmail.com
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: letsencrypt-cloudflare
+    solvers:
+    - dns01:
+        cloudflare:
+          apiTokenSecretRef:
+            name: cloudflare-api-token
+            key: api-token
+
diff --git a/clusters/ipv6/cert-manager/helm-release.yml b/clusters/ipv6/cert-manager/helm-release.yml
new file mode 100644
index 0000000..2dd3d12
--- /dev/null
+++ b/clusters/ipv6/cert-manager/helm-release.yml
@@ -0,0 +1,28 @@
+---
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: cert-manager
+  namespace: cert-manager
+spec:
+  interval: 6h
+  chart:
+    spec:
+      chart: cert-manager
+      version: "v1.19.2"
+      sourceRef:
+        kind: HelmRepository
+        name: jetstack
+        namespace: flux-system
+      interval: 6h
+  install:
+    remediation:
+      retries: 3
+  upgrade:
+    remediation:
+      retries: 3
+  values:
+    crds:
+      enabled: true
+      keep: true
+
diff --git a/clusters/ipv6/cert-manager/helm-repo.yml b/clusters/ipv6/cert-manager/helm-repo.yml
new file mode 100644
index 0000000..7f28039
--- /dev/null
+++ b/clusters/ipv6/cert-manager/helm-repo.yml
@@ -0,0 +1,10 @@
+---
+apiVersion: source.toolkit.fluxcd.io/v1
+kind: HelmRepository
+metadata:
+  name: jetstack
+  namespace: flux-system
+spec:
+  interval: 6h
+  url: https://charts.jetstack.io
+
diff --git a/clusters/ipv6/cert-manager/namespace.yml b/clusters/ipv6/cert-manager/namespace.yml
new file mode 100644
index 0000000..58387cf
--- /dev/null
+++ b/clusters/ipv6/cert-manager/namespace.yml
@@ -0,0 +1,8 @@
+---
+kind: Namespace
+apiVersion: v1
+metadata:
+  name: cert-manager
+  labels:
+    name: cert-manager
+