Cloudflare Managed Certificates
Current Situation
Currently we need to manually upload a renewed certificate to Cloudflare. This limits our flexibility
Desired Outcome
We should used Cloudflare's Advanced Certificate Manager with Terraform to have the Certificates we need automatically issued and managed by Cloudflare
Acceptance Criteria
-
ACM Certificate is in use for gitlab.net -
ACM Certificate is in use for gitlab.com -
ACM Certificate is in use for staging.gitlab.com -
All orange-clouded DNS entries are in the SANs for gitlab.net -
All orange-clouded DNS entries are in the SANs for gitlab.com -
All orange-clouded DNS entries are in the SANs for staging.gitlab.com
=> Followup issue: https://gitlab.com/gitlab-com/gl-infra/reliability/-/issues/16209
Edited by Hendrik Meyer (xLabber)