Currently, I have deployed a Kubernetes cluster using KubeOne that will serve as my ‘master cluster’. I am trying to prepare the configuration for Kubermatic Kubernetes Platform, but am a bit confused regarding the ‘values.yaml’ file.
I would like to deploy the minimal components for the ‘master’ cluster - cert-manager, Nginx-controller, and OAuth. So looking at the ‘values.yaml’ file for cert-manager there is a couple of things that I don’t quite understand how they fit in. For example: “ingressShim” and “clusterIssuers”. I can see that ‘ingressShim” is empty by default and we can configure a couple of settings for it - but what is this used for? Also, “clusterIssuers” refers to some “letsencrypt-prod” and “letsencrypt-staging” dicts that look like are pointing to some letsencrypt upstream servers? How does ‘letsencrypt’ fit in to KKP and is it a pre-requirement? Can we bypass letsencrypt? I noticed that ‘letsencrypt-prod’ is also referenced as the ‘certIssuer’ for Dex. Is this the only option for managing certificates?