Can I install Okteto without using wildcard certificates?
By default, Okteto exposes all your development environments under the same subdomain using a wildcard domain and a wildcard certificate. This simplifies certificate and domain management by eliminating the need to handle individual certificates for each environment.
However, if you prefer not to use wildcard certificates, you can automate the creation of certificates for your development environments. One effective way to achieve this is by using cert-manager annotations in your Ingress resources. Okteto allows you to automate the injection of these annotations directly, streamlining the certificate management process.
In this scenario, you will need a single certificate for the Okteto control plane installation that is valid for the following domains:
okteto.$OKTETO_DOMAINregistry.$OKTETO_DOMAINbuildkit.$OKTETO_DOMAINkubernetes.$OKTETO_DOMAINokteto-ssh-agent.$OKTETO_DOMAIN
And refer to that certificate from the wildcardCertificate section of your okteto helm values file.
Additionally, if you are using publicOverride, ensure that the certificate is also valid for that fully qualified domain name (FQDN).
Happy coding!
Also if you use publicOverride, the certificate will need to be valid for that FQDN as well.