cert-manager's Gateway API support is no longer experimental in cert-manager 1.15 #33840
Conversation
|
Commit b32d538 does not match "(?m)^Signed-off-by:". Please follow instructions provided in https://docs.cilium.io/en/stable/contributing/development/contributing_guide/#developer-s-certificate-of-origin |
maintainer-s-little-helper
bot
added
dont-merge/needs-sign-off
github-actions
bot
added
the
kind/community-contribution
Signed-off-by: Maël Valais <mael@vls.dev>
maelvls
force-pushed
the
gateway-api-cert-manager
branch
from
b32d538 to
9675e62
Compare
maintainer-s-little-helper
bot
removed
the
dont-merge/needs-sign-off
sayboras
added
area/documentation
maintainer-s-little-helper
bot
removed
dont-merge/needs-release-note-label
I also changed "installCRDs" to "crds.enabled" since installCRDs has been deprecated in cert-manager 1.15. Signed-off-by: Maël Valais <mael@vls.dev>
| @@ -32,11 +32,11 @@ Create TLS Certificate and Private Key | |||
| .. code-block:: shell-session | |||
|
|
|||
| $ helm repo add jetstack https://charts.jetstack.io | |||
| $ helm install cert-manager jetstack/cert-manager --version v1.10.0 \ | |||
| $ helm install cert-manager jetstack/cert-manager --version v1.15.1 \ | |||
There was a problem hiding this comment.
it seems as this command is failing with the following error whereas the previous command worked without an issue.
❯ helm install cert-manager jetstack/cert-manager --version v1.15.1 \
--namespace cert-manager \
--create-namespace \
--set crds.enabled=true \
--set config.enableGatewayAPI=true
Error: INSTALLATION FAILED: execution error at (cert-manager/templates/controller-config.yaml:2:38): .Values.config.apiVersion must be set !
It looks like we need wait for cert-manager/cert-manager#7126 being released or add the missing helm values too.
--set config.apiVersion="controller.config.cert-manager.io/v1alpha1" \
--set config.kind="ControllerConfiguration" \
edit: a quick test with the missing helm values starts the Helm installation - but it doesn't finish, as the startupapicheck pod doesn't succeed. 🤔 not sure whether i miss something in my setup though (local kind cluster with Cilium installed)
I0716 15:18:10.341850 1 api.go:108] "Not ready" logger="cert-manager.startupapicheck.checkAPI" err="Internal error occurred: failed calling webhook \"webhook.cert-manager.io\": failed to call webhook: Post \"https://cert-manager-webhook.cert-manager.svc:443/validate?timeout=30s\": tls: failed to verify certificate: x509: certificate signed by unknown authority"
There was a problem hiding this comment.
Thank you for testing out the changes @mhofstetter, I appreciate the attention to detail there.
|
This pull request has been automatically marked as stale because it |
github-actions
bot
added
the
stale
|
This pull request has not seen any activity since it was marked stale. |
Hey,
I'm happy to report that cert-manager has graduated the Gateway API support to beta! You no longer have to pass the feature flag
ExperimentalGatewayAPISupportanymore. Most importantly, the feature flagExperimentalGatewayAPISupportwas removed, so folks who used it in cert-manager 1.14 and below will need to remove it and add the new flag--enable-gateway-api.Source: https://cert-manager.io/docs/releases/upgrading/upgrading-1.14-1.15#gatewayapi-promotion-to-beta
Ref: cert-manager/website#851 (comment)