apiVersion: v1
kind: Secret
metadata:
  name: socktop-webterm-certs
type: Opaque
data:
  # Base64 encoded TLS CA certificates for your Raspberry Pi nodes
  # Replace these with your actual base64-encoded certificate files
  # To encode: cat cert.pem | base64 -w 0

  # Example placeholder - replace with your actual certificates:
  # rpi-master.pem: LS0tLS1CRUdJTi...
  # rpi-worker-1.pem: LS0tLS1CRUdJTi...
  # rpi-worker-2.pem: LS0tLS1CRUdJTi...
  # rpi-worker-3.pem: LS0tLS1CRUdJTi...

  # To create this secret with your actual certificates, run:
  # kubectl create secret generic socktop-webterm-certs \
  #   --from-file=rpi-master.pem=/path/to/rpi-master.pem \
  #   --from-file=rpi-worker-1.pem=/path/to/rpi-worker-1.pem \
  #   --from-file=rpi-worker-2.pem=/path/to/rpi-worker-2.pem \
  #   --from-file=rpi-worker-3.pem=/path/to/rpi-worker-3.pem \
  #   --dry-run=client -o yaml | kubectl apply -f -