Description
Is your feature request related to a problem? Please describe.
Use case: peoples using wildcard certificate needs to replicate the corresponding TLS secret across namespace used by different app. Tools allowing such feature (like reflector or replicator) uses annotations to allow and control secret replication across namespaces.
As the secret is created after the challenge succeed, there is no automated ways to doing such things, also kustomize doesnt support to patch resources outside its scope.
Describe the solution you'd like
what came first in my mind would be an Helm option to add custom annotations to TLS secrets when they are created by the hook (or did the hook only manage them thought cert-manager ? which would make such things difficult)
Describe alternatives you've considered
Unfortunately, manual patching after TLS secret creation to trigger the replication.