Sharing certificate between different namespaces

markrity · February 17, 2025, 1:09pm

Hi, we have different IngressRoute objects on different namespaces , but we use the same wildcard certificate for all those IngressRoutes.

Each IngressRoute has this at tls:

  tls:
    options:
      name: tls-options
    secretName: wildcard

Certificate object is getting issued on a namespace called staging.
So what we do right now is copy the created Secret from staging to all other namespaces that we need. But there are many downsides for this strategy.

Is there a better approach for auto provisioned certificates?

dkrizic · February 20, 2025, 10:17pm

Use the Gateway API, the certificate is defined in the Gateway and HTTPRoutes can be attached to the gateway sharing the certificate.

Topic		Replies	Views
How to use the same wildcard TLS certificate in multiple IngressRoutes in different namespaces? Traefik v2 kubernetes-crd , kubernetes-ingress	5	4208	August 19, 2019
Can I set namespace for TLS secretName in IngressRoute? Traefik v2 kubernetes-crd	4	8063	October 29, 2019
Prevent IngressRoutes from sharing/using the same certificate Traefik v2 kubernetes-crd , kubernetes-ingress	9	1356	April 27, 2023
V1 -> v2 migration \| Kubernetes \| multiple replica deployment \| shared wildcard certificate Traefik v2 kubernetes-crd , kubernetes-ingress , letsencrypt-acme	1	1323	January 10, 2020
How to have namespaced ingressroutes, middlewares, certificates and secrets in Kubernetes? Traefik v2 kubernetes-ingress	0	1109	July 19, 2022

Sharing certificate between different namespaces

Related topics