mirror of
https://github.com/shankar0123/certctl.git
synced 2026-06-07 22:11:38 +00:00
shankar0123
ec21c9bb29
M28: ACME Renewal Information (RFC 9702) — CA-directed renewal timing with cert ID computation, directory endpoint discovery, graceful degradation for non-ARI CAs. 19 tests. M29: Email notifier wiring + scheduled certificate digest — SMTP connector bridged to service layer via NotifierAdapter, DigestService with HTML email template, 7th scheduler loop (24h), digest preview/send API endpoints and GUI card. 21 tests. M30: Production-ready Helm chart — server Deployment, PostgreSQL StatefulSet, agent DaemonSet, ConfigMaps, Secrets, Ingress, security contexts, health probes, example values for dev/prod/ACME scenarios. Also: OpenAPI spec updates, MCP tool additions, CI helm-lint job, documentation updates across 5 doc files and README. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
100 lines
1.5 KiB
YAML
100 lines
1.5 KiB
YAML
# Certctl Development Configuration
|
|
# Lightweight setup for development and testing
|
|
# - Single server replica
|
|
# - Small PostgreSQL storage
|
|
# - Minimal resource limits
|
|
# - No ingress or monitoring
|
|
# - Demo auth mode (no API key required)
|
|
|
|
server:
|
|
replicas: 1
|
|
|
|
image:
|
|
repository: ghcr.io/shankar0123/certctl
|
|
pullPolicy: IfNotPresent # Use latest tag
|
|
|
|
port: 8443
|
|
|
|
resources:
|
|
requests:
|
|
cpu: 50m
|
|
memory: 64Mi
|
|
limits:
|
|
cpu: 200m
|
|
memory: 256Mi
|
|
|
|
auth:
|
|
type: none # Demo mode - no authentication
|
|
|
|
logging:
|
|
level: debug
|
|
format: json
|
|
|
|
service:
|
|
type: LoadBalancer # Easy external access for dev
|
|
|
|
issuer:
|
|
local:
|
|
enabled: true
|
|
|
|
rateLimiting:
|
|
rps: 100
|
|
burst: 200
|
|
|
|
postgresql:
|
|
enabled: true
|
|
|
|
image:
|
|
repository: postgres
|
|
tag: "16-alpine"
|
|
pullPolicy: IfNotPresent
|
|
|
|
auth:
|
|
database: certctl
|
|
username: certctl
|
|
password: "dev-password-change-me"
|
|
|
|
storage:
|
|
size: 5Gi
|
|
storageClass: "" # Use default storage class
|
|
|
|
resources:
|
|
requests:
|
|
cpu: 50m
|
|
memory: 128Mi
|
|
limits:
|
|
cpu: 200m
|
|
memory: 256Mi
|
|
|
|
agent:
|
|
enabled: true
|
|
kind: Deployment
|
|
replicas: 1
|
|
|
|
image:
|
|
repository: ghcr.io/shankar0123/certctl-agent
|
|
pullPolicy: IfNotPresent
|
|
|
|
resources:
|
|
requests:
|
|
cpu: 25m
|
|
memory: 32Mi
|
|
limits:
|
|
cpu: 100m
|
|
memory: 128Mi
|
|
|
|
ingress:
|
|
enabled: false
|
|
|
|
serviceAccount:
|
|
create: true
|
|
|
|
rbac:
|
|
create: true
|
|
|
|
monitoring:
|
|
enabled: false
|
|
|
|
customLabels:
|
|
environment: development
|