From b8811e92024c79b0d2dfeb122d38544d5bc67515 Mon Sep 17 00:00:00 2001
From: Caleb Woodbine <calebwoodbine.public@gmail.com>
Date: Sat, 15 May 2021 20:21:54 +1200
Subject: [PATCH] Add Cert-Manager certs

---
 chart/README.md | 42 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 42 insertions(+)

diff --git a/chart/README.md b/chart/README.md
index 8a67402..f0e9f3a 100644
--- a/chart/README.md
+++ b/chart/README.md
@@ -84,6 +84,48 @@ Create the namespace for plausible to be installed into
 kubectl create ns plausible
 ```
 
+## Cert-Manager
+[Cert-Manager](http://cert-manager.io/) utilises LetsEncrypt to obtain certificates for HTTP + TLS termination.
+
+Declare the LetsEncrypt certs (certs.yaml)
+```yaml
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-prod
+spec:
+  acme:
+    server: https://acme-v02.api.letsencrypt.org/directory
+    email: my-email@address.here
+    privateKeySecretRef:
+      name: letsencrypt-prod
+    solvers:
+      - http01:
+          ingress:
+            class: nginx
+        selector:
+          dnsNames:
+            - plausible.my-site.here
+---
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: letsencrypt-prod
+  namespace: plausible
+spec:
+  secretName: letsencrypt-prod
+  issuerRef:
+    name: letsencrypt-prod
+    kind: ClusterIssuer
+    group: cert-manager.io
+  dnsNames:
+    - plausible.my-site.here
+```
+
+``` bash
+kubectl apply -f certs.yaml
+```
+
 ## Helm-Operator
 [Helm-Operator](https://docs.fluxcd.io/projects/helm-operator/en/stable/) enables declarive installation of Helm charts.
 See the [docs](https://docs.fluxcd.io/projects/helm-operator/en/stable/references/chart/) for installation.