apiVersion: v1
data:
  certificate-template.yml: |
    apiVersion: cert-manager.io/v1
    kind: Certificate
    metadata:
        name: '{{ .PodInfo.Name }}-tls'
        namespace: '{{ .PodInfo.Namespace }}'
    spec:
        commonName: '{{ .Hostname }}'
        dnsNames:
        - '{{ .Hostname }}'
        - '{{ .FQDN }}'
        ipAddresses:
        - '{{ .PodInfo.IP }}'
        issuerRef:
            kind: ClusterIssuer
            name: kube-prometheus-stack
        secretName: '{{ .PodInfo.Name }}-tls'
        usages:
        - client auth
        - server auth
  node-exporter.yml: |
    tls_server_config:
        cert_file: /certs/tls.crt
        client_auth_type: VerifyClientCertIfGiven
        client_ca_file: /certs/ca.crt
        key_file: /certs/tls.key
        min_version: TLS13
kind: ConfigMap
metadata:
  annotations:
    meta.helm.sh/release-name: kube-prometheus-stack
    meta.helm.sh/release-namespace: monitoring
  creationTimestamp: "2026-03-10T02:37:12Z"
  labels:
    app.kubernetes.io/managed-by: Helm
  name: kube-prometheus-stack-node-exporter
  namespace: monitoring
  resourceVersion: "3867"
  uid: 3c6941a1-e143-4d63-8b63-ee54e070b9a4