From ec270d6a3336e6a785d07626a39063177ddbf04e Mon Sep 17 00:00:00 2001
From: Bastian <bastian.heppener@mgm-tp.com>
Date: Thu, 22 May 2025 16:35:45 +0200
Subject: [PATCH] add dnsNames for service and remove isCA

---
 src/main/helm/templates/certificate.yaml         | 8 ++++++--
 src/main/helm/templates/client_certificates.yaml | 1 -
 src/test/helm/certificate_test.yaml              | 6 ++++++
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/src/main/helm/templates/certificate.yaml b/src/main/helm/templates/certificate.yaml
index 7ac0e72..e8e5aa0 100644
--- a/src/main/helm/templates/certificate.yaml
+++ b/src/main/helm/templates/certificate.yaml
@@ -6,7 +6,6 @@ metadata:
   labels:
     {{- include "app.defaultLabels" . | indent 4 }}
 spec:
-  isCA: false
   secretName: {{ .Release.Name }}-tls-secret
   privateKey:
     algorithm: ECDSA
@@ -40,4 +39,9 @@ spec:
     - key encipherment
     - key agreement
   dnsNames:
-    - "{{ .Release.Name }}-{{ include "app.baseDomain" . }}"
\ No newline at end of file
+    - "{{ .Release.Name }}-{{ include "app.baseDomain" . }}"
+    - "{{ .Release.Name }}.{{ include "app.namespace" . }}.svc.cluster.local"
+    - "{{ .Release.Name }}.{{ include "app.namespace" . }}.svc.cluster"
+    - "{{ .Release.Name }}.{{ include "app.namespace" . }}.svc"
+    - "{{ .Release.Name }}.{{ include "app.namespace" . }}"
+    - "{{ .Release.Name }}"
\ No newline at end of file
diff --git a/src/main/helm/templates/client_certificates.yaml b/src/main/helm/templates/client_certificates.yaml
index c52df70..9d3575d 100644
--- a/src/main/helm/templates/client_certificates.yaml
+++ b/src/main/helm/templates/client_certificates.yaml
@@ -8,7 +8,6 @@ metadata:
   labels:
     {{- include "app.defaultLabels" . | indent 4 }}
 spec:
-  isCA: false
   secretName: {{ .Release.Name }}-{{ $cn | lower }}-tls-secret
   privateKey:
     algorithm: ECDSA
diff --git a/src/test/helm/certificate_test.yaml b/src/test/helm/certificate_test.yaml
index cf78c77..2d70a8c 100644
--- a/src/test/helm/certificate_test.yaml
+++ b/src/test/helm/certificate_test.yaml
@@ -64,6 +64,12 @@ tests:
           path: spec.dnsNames
           value:
             - "xta-test-server-release-name-helm.test.by.ozg-cloud.de"
+            - "xta-test-server-release-name.sh-helm-test.svc.cluster.local"
+            - "xta-test-server-release-name.sh-helm-test.svc.cluster"
+            - "xta-test-server-release-name.sh-helm-test.svc"
+            - "xta-test-server-release-name.sh-helm-test"
+            - "xta-test-server-release-name"
+
   - it: should contain default lables and component lables
     asserts:
       - equal:
-- 
GitLab