-
Notifications
You must be signed in to change notification settings - Fork 458
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Console TLS incompatible with cert-manager certificate #1439
Comments
Thank you guys, I have read the issue. Will try to understand better and look for a solution to this, starting today!. |
You don't have to enable |
The name of the secret has to be
|
Ok I see it now, this is an issue for:
Even when the cert is uploaded in the pod: bash-4.4$ ls
CAs tls.crt tls.key Console Pod is not serving in port 9443 for above scenarios but it is only working for Opaque Secrets... So yes, it is a bug!. I need more time to fix this and root cause this issue, but as of now, I believe the problem is somewhere in |
With changes in 1800 PR, we are including |
@JonMerlevede the issue has been fixed, please give it a try and let us know if you still see the problem on your side! 👍 |
I am setting
MINIO_CONSOLE_TLS_ENABLE=on
and generate theoperator-console-tls
secret using cert manager. The operator pod logs indicate that console TLS is enabled. I can see that the certificates are mounted into the console pod. However, the console pod does not start listening to HTTPS requests.Expected Behavior
The console pod listens to HTTPS requests
Current Behavior
tls.crt
andtls.key
are mounted into the Console pod, but the console process does not listen to HTTPS requests.Possible Solution
Update console process to check for the presence of the
tls.crt
andtls.key
files in addition to the filespublic.crt
andprivate.key
.Steps to Reproduce (for bugs)
MINIO_CONSOLE_TLS_ENABLE=on
operator-console-tls
withtls.crt
andtls.key
keys (optionallyca.crt
)Context
I currently have to copy the contents of the secret generated by cert-manager into another secret with keys
public.crt
andprivate.key
.Your Environment
minio-operator
): v4.5.8The text was updated successfully, but these errors were encountered: