kubernetes: added additional ingress controller for internal access

- added additional traefik ingress controller for accessing internal
  services via ingress.

kubernetes/cert-manager-config-helm-chart/templates/clusterIssuers.yaml

@@ -0,0 +1,18 @@
+# filepath: /home/taqi/homeserver/k3s-infra/cert-manager/templates/clusterIssuer.yaml
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: {{ .Values.clusterIssuer.name }}
+  namespace: {{ .Values.namespace }}
+spec:
+  acme:
+    server: {{ .Values.clusterIssuer.server }}
+    privateKeySecretRef:
+      name: {{ .Values.clusterIssuer.privateKeySecretRef }}
+    solvers:
+    - dns01:
+        cloudflare:  # Use the DNS-01 challenge mechanism for Cloudflare
+          email: {{ .Values.clusterIssuer.email }}
+          apiTokenSecretRef:
+            name: {{ .Values.clusterIssuer.apiTokenSecretRef.name }}
+            key: {{ .Values.clusterIssuer.apiTokenSecretRef.key }}

kubernetes/cert-manager-config-helm-chart/templates/secret-cloudflare.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ .Values.secret.name }}
+  namespace: {{ .Values.namespace }}
+type: Opaque
+stringData:
+  api-token: {{ .Values.secret.apiToken }}

kubernetes/cert-manager-config-helm-chart/templates/wildcardCert.yaml

@@ -0,0 +1,14 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: {{ .Values.wildcardCert.name }}
+  namespace: {{ .Values.namespace }}
+spec:
+  secretName: {{ .Values.wildcardCert.secretName }}
+  issuerRef:
+    name: {{ .Values.clusterIssuer.name }}
+    kind: ClusterIssuer
+  dnsNames:
+    {{- range .Values.wildcardCert.dnsNames }}
+    - "{{ . }}"
+    {{- end }}