From e6ed85920daa80fc14b31c26b13a80b8b14476fd Mon Sep 17 00:00:00 2001
From: shockrah <dev@shockrah.xyz>
Date: Mon, 8 Sep 2025 21:00:24 -0700
Subject: [PATCH] Creating semi-functional tls cert with k8s Certificate
 resource is created but not deployed at this time

---
 infra/vultr-kubernetes/tls.yaml | 37 +++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)
 create mode 100644 infra/vultr-kubernetes/tls.yaml

diff --git a/infra/vultr-kubernetes/tls.yaml b/infra/vultr-kubernetes/tls.yaml
new file mode 100644
index 0000000..3e01958
--- /dev/null
+++ b/infra/vultr-kubernetes/tls.yaml
@@ -0,0 +1,37 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-staging
+spec:
+  acme:
+    # The ACME server URL
+    server: https://acme-staging-v02.api.letsencrypt.org/directory
+    preferredChain: "ISRG Root X1"
+    # Email address used for ACME registration
+    email: dev@shockrah.xyz
+    # Name of a secret used to store the ACME account private key
+    privateKeySecretRef:
+      name: letsencrypt-staging
+    solvers:
+      - http01:
+          ingress:
+            class: nginx
+---
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-prod
+spec:
+  acme:
+    # The ACME server URL
+    server: https://acme-v02.api.letsencrypt.org/directory
+    # Email address used for ACME registration
+    email: dev@shockrah.xyz
+    # Name of a secret used to store the ACME account private key
+    privateKeySecretRef:
+      name: letsencrypt-prod
+    solvers:
+      - http01:
+          ingress:
+            class: nginx
+