• wheels@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 years ago

    Have thought of doing this before. I only read halfway through but enough to confirm what I expected - too much work!

    • Badabinski@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      2 years ago

      I unfortunately agree :( I wanted to use LE, but I really didn’t want a bunch of extra infrastructure. I ended up ponying up for a domain cert. It was expensive, but it’s really easy for all of my k8s Ingress/IngressRoute/HTTPProxy objects to use it.

    • kamin@lemmy.kghorvath.com
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 years ago

      I can’t open the link right now cause it seems to have gotten the hug of death, but if they didn’t mention it check out Caddy. It handles the certificates all automatically. All you have to do is set up the DNS record and then point Caddy at your internal service and it handles the rest.