From 0a6a3e5371190548c863058e51293ff802f43902 Mon Sep 17 00:00:00 2001
From: michael <michael@balsillie.net>
Date: Fri, 9 Dec 2022 02:40:44 +1300
Subject: [PATCH] cert manager

---
 ansible/playbooks/05_k8s_deploy.yaml          | 49 +++++++++++--------
 .../roles/k8s_cert_manager/default/main.yaml  |  2 +
 .../roles/k8s_cert_manager/tasks/main.yaml    | 12 +++++
 3 files changed, 42 insertions(+), 21 deletions(-)
 create mode 100644 ansible/roles/k8s_cert_manager/default/main.yaml
 create mode 100644 ansible/roles/k8s_cert_manager/tasks/main.yaml

diff --git a/ansible/playbooks/05_k8s_deploy.yaml b/ansible/playbooks/05_k8s_deploy.yaml
index a159e93..ec9f63f 100644
--- a/ansible/playbooks/05_k8s_deploy.yaml
+++ b/ansible/playbooks/05_k8s_deploy.yaml
@@ -1,28 +1,35 @@
 ---
-- name: configure control plane
-  hosts: k8s_control
-  gather_facts: true
-  become: true
-  roles:
-    - k8s_control
+# - name: configure control plane
+#   hosts: k8s_control
+#   gather_facts: true
+#   become: true
+#   roles:
+#     - k8s_control
 
-- name: configure calico networking
-  hosts: localhost
-  gather_facts: true
-  become: false
-  roles:
-    - k8s_network
+# - name: configure calico networking
+#   hosts: localhost
+#   gather_facts: true
+#   become: false
+#   roles:
+#     - k8s_network
 
-- name: remove control-plane taints
+# - name: remove control-plane taints
+#   hosts: localhost
+#   gather_facts: false
+#   become: false
+#   roles:
+#     - k8s_taint
+
+# - name: configure storage operator
+#   hosts: localhost
+#   gather_facts: false
+#   become: false
+#   roles:
+#     - k8s_storage_ebs_deploy
+
+- name: configure cert manager
   hosts: localhost
   gather_facts: false
   become: false
   roles:
-    - k8s_taint
-
-- name: configure storage operator
-  hosts: localhost
-  gather_facts: false
-  become: false
-  roles:
-    - k8s_storage_ebs_deploy
\ No newline at end of file
+    - k8s_cert_manager
\ No newline at end of file
diff --git a/ansible/roles/k8s_cert_manager/default/main.yaml b/ansible/roles/k8s_cert_manager/default/main.yaml
new file mode 100644
index 0000000..ae635c0
--- /dev/null
+++ b/ansible/roles/k8s_cert_manager/default/main.yaml
@@ -0,0 +1,2 @@
+---
+cert_manager_version: v1.10.1
\ No newline at end of file
diff --git a/ansible/roles/k8s_cert_manager/tasks/main.yaml b/ansible/roles/k8s_cert_manager/tasks/main.yaml
new file mode 100644
index 0000000..d81f074
--- /dev/null
+++ b/ansible/roles/k8s_cert_manager/tasks/main.yaml
@@ -0,0 +1,12 @@
+---
+- name: download the cert manager manifest
+  ansible.builtin.uri:
+    url: https://github.com/cert-manager/cert-manager/releases/download/{{ cert_manager_version }}/cert-manager.yaml
+    dest: "{{ ansible_search_path[0] }}/files/cert_manager_{{ cert_manager_version }}.yaml"
+    creates: "{{ ansible_search_path[0] }}/files/cert_manager_{{ cert_manager_version }}.yaml"
+    mode: 0664
+
+- name: install cert manager manifest to cluster
+  kubernetes.core.k8s:
+    state: present
+    src: "{{ ansible_search_path[0] }}/files/cert_manager_{{ cert_manager_version }}.yaml"
\ No newline at end of file