ssl-certificate google-kubernetes-engine lets-encrypt google-cloud-run google-anthos

How to automatically renew the Let's Encrypt SSL certificate for Cloud Run for Anthos on Google Cloud with Serverless?

I made a service with Cloud Run for Anthos on Google Cloud, and the SSL certificate is made by Let’s Encrypt. I want to renew the certificate automatically on serverless, not on GCE.

How can I do that?

Can I use cronJob on GKE?

I just manually created the certificate on my laptop.

sudo certbot certonly --manual --preferred-challenges dns -d '*.default.domain'
sudo kubectl create --namespace istio-system secret tls istio-ingressgateway-certs \
--key /etc/letsencrypt/live/default.domain/privkey.pem \
--cert /etc/letsencrypt/live/default.domain/fullchain.pem

Solution

Now we have GCP document of "Using managed TLS certificates and HTTPS" https://cloud.google.com/anthos/run/docs/managed-tls

Comparing if *.csr and *.pem files match
How to secure multiple wildcard domain names in single SSL certificate?
How to force Visual Studio to re-create the SSL certificate for a .NET Core Web Application running Kestrel?
Importing SSL Certificate into Eclipse
"PKIX path building failed" and "unable to find valid certification path to requested target"
Why is my localhost self-signed SSL certificate suddenly invalid in Chrome?
CURL showing "No required SSL certificate was sent" eve
HTTPS connections to cloudfront / S3 using godaddy domain
SSL Certificate to JSON
Unable to find valid certification path to requested target error on IntelliJ IDEA
How to properly create a secure web server with Dart?
LetsEncrypt SSL on IP Address
Generate DER format public key from PEM format certificate and PEM format public key
IIS10 SSL Configuration for Multiple Sites and more than one SSL Cert
How to get subject hash of a PEM certificate
react-native java.security.cert.CertPathValidatorException: Trust anchor for certification path not found
Tomcat server AND HTTP Client accepting expired self-signed certificate
Installed SSL certificate in certificate store, but it's not in IIS certificate list
Create a .crt for android
"Key vault reference error" in azure web app configuration setting
How to properly install certificates on Docker in ASP.NET Core application?
AuthenticationException: The remote certificate is invalid because of errors in the certificate chain: UntrustedRoot, NotValidTime
Weak Self-Signed Certificate and HTTPS Error for IP Address on iOS
Challenge failed for http 01
Cannot install anything with brew, Error: Failed to download resource "git--html"
Error: unable to verify the first certificate in nodejs
"javax.servlet.request.X509Certificate" request attribute does not return CA certs
Delete SSL certificate in Kubernetes
How to ensure we're getting the topmost Root CA certificate from a chain?
How to download the SSL certificate from a website using PowerShell?