k8s-certmon connects to a Kubernetes cluster, looks through all tls secret objects, fetches information about the certificates and expose an API with detailed information about each certificate. It's intended to be used by monitoring systems to alert on expired and invalid certificates.
Variable | Description | Default value |
---|---|---|
KUBECONFIG | Path to kubeconfig if not running in-cluster | Null |
LISTEN_PORT | Port for webserver | 8080 |
UPDATE_INTERVAL | Status refresh interval | 60 |
DAYS_LEFT_CRITICAL_THRESHOLD | Critical threshold for certificate expiration | 3 |
DAYS_LEFT_WARN_THRESHOLD | Warning threshold for certificate expiration | 30 |
The API returns a JSON response with detailed information and HTTP status codes that reflects current status.
No certificate errors or warnings found.
Warnings found.
Critical issues found.