kubernetes project update

terraform/templates/kubernetes-automation-example/certmanager.tf

@@ -1,32 +1,79 @@
 resource "kubernetes_namespace" "certmanager" {
 
-    depends_on = [time_sleep.wait_for_kubernetes]
+    depends_on = [
+        time_sleep.wait_for_kubernetes
+    ]
 
     metadata {
         name = "certmanager"
     }
+  
 }
 
 resource "helm_release" "certmanager" {
-    
-    depends_on = [kubernetes_namespace.certmanager]
+
+    depends_on = [
+        kubernetes_namespace.certmanager
+    ]
 
     name = "certmanager"
     namespace = "certmanager"
 
     repository = "https://charts.jetstack.io"
-    chart      = "cert-manager"
+    chart = "cert-manager"
 
     # Install Kubernetes CRDs
     set {
         name  = "installCRDs"
         value = "true"
-    }
+    }    
 }
 
 resource "time_sleep" "wait_for_certmanager" {
 
-    depends_on = [helm_release.certmanager]
+    depends_on = [
+        helm_release.certmanager
+    ]
 
     create_duration = "10s"
 }
+
+# Create a ClusterIssuer
+
+resource "kubectl_manifest" "cloudflare_prod" {
+
+    depends_on = [
+        time_sleep.wait_for_certmanager
+    ]
+
+    # TODO: add your mail address according to your configuration and API authentication settings!
+    # ---
+    yaml_body = <<YAML
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: cloudflare-prod
+spec:
+  acme:
+    email: your-mail-address
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: cloudflare-prod-account-key
+    solvers:
+    - dns01:
+        cloudflare:
+          email: your-mail-address
+          apiKeySecretRef:
+            name: cloudflare-api-key-secret
+            key: api-key
+    YAML
+}
+
+resource "time_sleep" "wait_for_clusterissuer" {
+
+    depends_on = [
+        kubectl_manifest.cloudflare_prod
+    ]
+
+    create_duration = "30s"
+}