Ingress and letsencrypt

Hi,
I’m pretty new in the container world, not to mention kubernetes.
None the less I decided to give it a shot. I learned the basics, and now I’m trying to setup my own test environment.

I managed to install ingress as a load balancer, which works great. So next step was to get https.
I tried to follow various guides, but eventually, this is what I ended up doing:

  • Install the cert-manager from let’s encrypt
    – Assigned it to my cluster and the project
  • Updated the YAML for my ingress load balancer as follows:
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
  annotations:
    certmanager.k8s.io/cluster-issuer: test-web
    field.cattle.io/creatorId: user-ltt8l
    field.cattle.io/ingressState: '{"dGVzdC1pbmdyZXNzL2RlZmF1bHQvdGVzdC5sYi5ob25yZWJvcm4uY29tLy84MA==":"deployment:default:nginx-hello"}'
    field.cattle.io/publicEndpoints: '[{"addresses":["51.91.22.13"],"port":443,"protocol":"HTTPS","serviceName":"default:ingress-9ea64b831da7d25ec8611b071ac47009","ingressName":"default:test-ingress","hostname":"test.lb.honreborn.com","allNodes":true}]'
  creationTimestamp: "2019-07-20T07:59:59Z"
  generation: 2
  labels:
    cattle.io/creator: norman
  name: test-ingress
  namespace: default
  resourceVersion: "268242"
  selfLink: /apis/extensions/v1beta1/namespaces/default/ingresses/test-ingress
  uid: 5f10ca93-aac4-11e9-9ee4-fa163e27697f
spec:
  rules:
  - host: test.lb.honreborn.com
    http:
      paths:
      - backend:
          serviceName: ingress-9ea64b831da7d25ec8611b071ac47009
          servicePort: 80
  tls:
  - hosts:
    - test.lb.honreborn.com
    secretName: test.lb.honreborn.com-cert
status:
  loadBalancer:
    ingress:
    - ip: 51.91.22.13
    - ip: 51.91.22.37
    - ip: 51.91.23.132

I however see no certificates being created, and im constantly presented with a self signed certificate.
I don’t know if I need to create the secret myself, or what I’m missing… Any help would be much appreciated :slight_smile:

For struggling as me, this guide did the trick for me:

2 Likes