Skip to content

Instantly share code, notes, and snippets.

View Aergonus's full-sized avatar
🥂
/

Aergonus

🥂
/
12 followers · 20 following
View GitHub Profile
@Aergonus
Aergonus / cleanup-cert-manager-secrets.sh
Last active December 17, 2024 20:43 — forked from lisawolderiksen/secrets_without_certificates.sh
Script to detect "orphaned" TLS secrets when Cert manager (cainjector) complains about "unable to fetch certificate that owns the secret", because deleting a Certificate will not (default) delete the Secret. (Ref. https://cert-manager.io/docs/usage/certificate/#cleaning-up-secrets-when-certificates-are-deleted)
#!/bin/bash
# inspired by https://gist.github.com/lisawolderiksen/8c6026ef55f04e4f5d6a288b5e53214b
# Apache 2.0 License
usage() {
cat << EOF
This script detects TLS secrets which refer to certificates that don't exist (anymore).
This is the case when error "unable to fetch certificate that owns the secret" occurs in cert-manager (cainjector) logs.