aws-load-balancer-controller icon indicating copy to clipboard operation
aws-load-balancer-controller copied to clipboard

Published 20 hours ago verified publisher icon kubernetes-sigs

Self-signed cert doesn't automatically renew

Open Azahorscak opened this issue 1 year ago • 1 comments

Describe the bug Self-signed certs deployed by this chart are missing the issuerRef.group and fail to renew in specific environments with the following error Unknown issuer kind: Issuer

Steps to reproduce Install cert-manager and do not specify a default issuer. Deploy this chart with certManagerEnabled: true

Expected outcome The self signed certificate becomes ready.

Environment

  • AWS Load Balancer controller version: 2.8.3
  • Kubernetes version: 1.29
  • Using EKS (yes/no), if so version? Yes, 1.29

Additional Context:

Azahorscak avatar Sep 27 '24 14:09 Azahorscak

/kind bug

huangm777 avatar Sep 30 '24 19:09 huangm777

Perhaps the issue has been identified with the cloudflare origin ca issuer. https://github.com/cloudflare/origin-ca-issuer/issues/149

Azahorscak avatar Nov 01 '24 14:11 Azahorscak

This is resolved with the origin-ca-issuer update in my clusters. Closing.

Azahorscak avatar Nov 21 '24 23:11 Azahorscak