diff --git a/clusters/ontime-dev-doks/configs/cluster-issuer.yaml b/clusters/ontime-dev-doks/configs/cluster-issuer.yaml
new file mode 100644
index 0000000..59c34ca
--- /dev/null
+++ b/clusters/ontime-dev-doks/configs/cluster-issuer.yaml
@@ -0,0 +1,27 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: lets-encrypt-staging
+spec:
+  acme:
+    server: https://acme-staging-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: lets-encrypt-staging-account-key
+    solvers:
+    - http01:
+        ingress:
+          ingressClassName: nginx
+---
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: lets-encrypt-prod
+spec:
+  acme:
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: lets-encrypt-prod-account-key
+    solvers:
+    - http01:
+        ingress:
+          ingressClassName: nginx
\ No newline at end of file
diff --git a/clusters/ontime-dev-doks/configs/kustomization.yaml b/clusters/ontime-dev-doks/configs/kustomization.yaml
new file mode 100644
index 0000000..d95b52b
--- /dev/null
+++ b/clusters/ontime-dev-doks/configs/kustomization.yaml
@@ -0,0 +1,5 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - cluster-issuer.yaml
+  - storageclass.yaml
\ No newline at end of file
diff --git a/clusters/ontime-dev-doks/configs/storageclass.yaml b/clusters/ontime-dev-doks/configs/storageclass.yaml
new file mode 100644
index 0000000..ab2173e
--- /dev/null
+++ b/clusters/ontime-dev-doks/configs/storageclass.yaml
@@ -0,0 +1,19 @@
+---
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-s3
+provisioner: ru.yandex.s3.csi
+parameters:
+  mounter: geesefs
+  # you can set mount options here, for example limit memory cache size (recommended)
+  options: "--memory-limit 1000 --dir-mode 0777 --file-mode 0666"
+  bucket: stages-volume
+  csi.storage.k8s.io/provisioner-secret-name: csi-s3-secret
+  csi.storage.k8s.io/provisioner-secret-namespace: csi-s3
+  csi.storage.k8s.io/controller-publish-secret-name: csi-s3-secret
+  csi.storage.k8s.io/controller-publish-secret-namespace: csi-s3
+  csi.storage.k8s.io/node-stage-secret-name: csi-s3-secret
+  csi.storage.k8s.io/node-stage-secret-namespace: csi-s3
+  csi.storage.k8s.io/node-publish-secret-name: csi-s3-secret
+  csi.storage.k8s.io/node-publish-secret-namespace: csi-s3
\ No newline at end of file