From 31fe1bf95d8a662477e279d5c957f9c4ef8507fe Mon Sep 17 00:00:00 2001 From: ab Date: Thu, 6 Nov 2025 14:07:01 +0000 Subject: [PATCH] Update k8s/apps/pasarguard/daemonset.yaml --- k8s/apps/pasarguard/daemonset.yaml | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/k8s/apps/pasarguard/daemonset.yaml b/k8s/apps/pasarguard/daemonset.yaml index a1fd4b1..4388d98 100644 --- a/k8s/apps/pasarguard/daemonset.yaml +++ b/k8s/apps/pasarguard/daemonset.yaml @@ -180,25 +180,27 @@ spec: echo "Certificate already exists" fi - # Wait for certificate to be ready (max 60 seconds) + # Wait for certificate to be ready + $TTL=600 echo "Waiting for certificate to be ready..." - for i in {1..60}; do + for i in {1..$TTL}; do if kubectl get secret "${CERT_NAME}-tls" -n "${NAMESPACE}" &>/dev/null; then echo "Certificate secret is ready!" break fi - echo "Waiting for certificate... ($i/60)" + echo "Waiting for certificate... ($i/$TTL)" sleep 1 done if ! kubectl get secret "${CERT_NAME}-tls" -n "${NAMESPACE}" &>/dev/null; then - echo "WARNING: Certificate secret not ready after 60 seconds" + echo "WARNING: Certificate secret not ready after $TTL seconds" else # Extract certificate and key from secret to shared volume echo "Extracting certificate and key..." kubectl get secret "${CERT_NAME}-tls" -n "${NAMESPACE}" -o jsonpath='{.data.tls\.crt}' | base64 -d > /shared/tls.crt kubectl get secret "${CERT_NAME}-tls" -n "${NAMESPACE}" -o jsonpath='{.data.tls\.key}' | base64 -d > /shared/tls.key - echo "Certificate and key extracted successfully" + echo "Certificate and key extracted successfully." + cat /shared/tls.crt fi # Create individual Service and Endpoints for this node