stackoom
  简体   繁体   中英

Kong Ingress cert-manager wrong routing

 原文  2021-07-08 08:55:51       kubernetes/ kong/ cert-manager/ kong-ingress

Question

I have a k8s cluster with kong-ingress and cert-manager.

  • Backend at: domain.network/*

To renew the certificate, cert-manager starts a new pod and ingress which should reply at:

  • CertManagerHandler at: domain.network/.well-known/xxx/zzz

However, when trying to access the well-known route, Backend handles the request, not CertManagerHandler

I think it might come from the * in the path of Backend but I'm not sure.

入口

I defined Backend ingress with:

  annotations:
    kubernetes.io/tls-acme: "true"
    acme.cert-manager.io/http01-edit-in-place: "true"
    kubernetes.io/ingress.class: kong
    cert-manager.io/cluster-issuer: letsencrypt-prod

...

http:
        paths:
          - path: /*

How to make the .well-known endpoint to be handled by the cert-manager pod?

1 answers

solution1
 0 ACCPTED  2021-10-18 14:06:57

I've fixed it by removing the wildcard from the path:

  • /* to /

Did the trick.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Ingress TLS routes with cert-manager not applied ingress-nginx, cert-manager and ingressClassName kubernetes cert-manager ignores ingress annotations 404 challenge response with cert-manager and Traefik ingress Nginx-Ingress not picking up certificate from cert-manager Configure SSL certificates in kubernetes with cert-manager istio ingress and LetsEncrypt Ingress nginx cert-manager certificate invalid on browser How to deploy a letsencryp with cert-manager and HAProxy-ingress Kubernetes TLS Ingress route with cert-manager and SelfSigned ClusterIssuer not working Unable to use cert-manager and nginx ingress controller with SSL termination
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM