Update k8s yamls

Streamline the k8s folder with more sensible yamls.

helm/pivault.yaml

@@ -31,6 +31,9 @@ server:
 
   ingress:
     enabled: true
+    annotations:
+      cert-manager.io/cluster-issuer: vault-issuer
+      kubernetes.io/ingress.class: nginx
     hosts:
       - host: pivault.dnet
         paths:

k8s/certificate.yaml

@@ -1,12 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: vault.ducoterra.net
-spec:
-  secretName: vault-tls-cert
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
-  commonName: vault.ducoterra.net
-  dnsNames:
-  - vault.ducoterra.net

k8s/pivault-dnet-cert.yaml

@@ -1,7 +1,7 @@
 apiVersion: cert-manager.io/v1alpha2
 kind: Certificate
 metadata:
-  name: pivault-dnet
+  name: pivault-dnet-cert
 spec:
   secretName: pivault-dnet-cert
   issuerRef:

k8s/service-account-internal.yaml

@@ -1,4 +0,0 @@
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: internal-app

k8s/test-certificate.yaml

@@ -1,12 +0,0 @@
-apiVersion: cert-manager.io/v1alpha2
-kind: Certificate
-metadata:
-  name: vault-test-dnet
-spec:
-  secretName: vault-test-dnet-cert
-  issuerRef:
-    name: vault-issuer
-    kind: ClusterIssuer
-  commonName: vault-test.dnet
-  dnsNames:
-  - vault-test.dnet

k8s/vault-dnet-service.yaml

@@ -1,18 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: pivault-dnet
-spec:
-  ports:
-  - protocol: TCP
-    port: 443
----
-apiVersion: v1
-kind: Endpoints
-metadata:
-  name: external-vault
-subsets:
-  - addresses:
-      - ip: pivault.dnet
-    ports:
-      - port: 443