From d24b2b0743f56765e439412ff3e07e72980e6ebd Mon Sep 17 00:00:00 2001
From: David Landry <david@dmwl.net>
Date: Mon, 3 Feb 2025 14:19:19 -0500
Subject: [PATCH] fix(cert-manager): force external DNS resolvers for DNS01
 challenges

---
 apps/cert-manager/overlays/system/deployment.patch.yaml | 4 ++++
 apps/cert-manager/overlays/system/kustomization.yaml    | 6 ++++++
 2 files changed, 10 insertions(+)
 create mode 100644 apps/cert-manager/overlays/system/deployment.patch.yaml

diff --git a/apps/cert-manager/overlays/system/deployment.patch.yaml b/apps/cert-manager/overlays/system/deployment.patch.yaml
new file mode 100644
index 0000000..d8c3e37
--- /dev/null
+++ b/apps/cert-manager/overlays/system/deployment.patch.yaml
@@ -0,0 +1,4 @@
+- op: add
+  path: /spec/template/spec/containers/0/args/-
+  value: '--dns01-recursive-nameservers=8.8.8.8:53,1.1.1.1:53'
+
diff --git a/apps/cert-manager/overlays/system/kustomization.yaml b/apps/cert-manager/overlays/system/kustomization.yaml
index ef1328d..1e36239 100644
--- a/apps/cert-manager/overlays/system/kustomization.yaml
+++ b/apps/cert-manager/overlays/system/kustomization.yaml
@@ -3,3 +3,9 @@ kind: Kustomization
 resources:
   - ../../base
   - ./clusterissuer.yaml
+
+patches:
+  - path: ./deployment.patch.yaml
+    target:
+      kind: Deployment
+      name: cert-manager