notary ingress configured for port 443 even with internalTLS enabled false #736

Martin-Weiss · 2021-08-10T09:26:21Z

Expected behavior and actual behavior:
We configured the following:

  expose:
    notary:
      ingress:
        host: notary.customer.com
      tls:
        certificateRef: notary-customer-com

internalTLS:
    enabled: false

but the ingress created through the operator has

    http:
      paths:
      - backend:
          service:
            name: harbor-cluster-harbor-harbor-notaryserver
            port:
              number: 443

Due to that we get an error 503 when trying to access the service.

Adjusting the ingress for notary manually to port 80 works..

Steps to reproduce the problem:
See above

Versions:

harbor operator version: v1.0.1
harbor version: 2.2.1
kubernetes version: 1.20.7

-> is this a known defect in the operator that could be fixed?

(we assume that the manual workaround with adjusting the ingress manually is overwritten with every future change... )

The text was updated successfully, but these errors were encountered:

steven-zou assigned heww Aug 11, 2021

steven-zou added component/ingress reproducing kind/bug Something isn't working release/1.1 and removed reproducing labels Aug 11, 2021

heww mentioned this issue Aug 12, 2021

fix: let backend port in notary ingress depend on internal tls #744

Merged

steven-zou closed this as completed in #744 Aug 16, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

notary ingress configured for port 443 even with internalTLS enabled false #736

notary ingress configured for port 443 even with internalTLS enabled false #736

Martin-Weiss commented Aug 10, 2021

notary ingress configured for port 443 even with internalTLS enabled false #736

notary ingress configured for port 443 even with internalTLS enabled false #736

Comments

Martin-Weiss commented Aug 10, 2021