New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to get GCS backend working #3741
Comments
@nixgadget please use the configuration snippet to make sure SSLv3 is not used
|
@aledbf I thought so too at first. But doesnt seem to be the case.
|
Just in case, the bucket must be public |
@aledbf Yup bucket is publicly accessible.
|
Interestingly, I dont see the |
@nixgadget I forgot to mention that you need to change the path to |
@aledbf Thanks for pointing that out ... Don't think i came across it in the changelog docs. |
What keywords did you search in NGINX Ingress controller issues before filing this one? (If you have found any duplicates, you should instead reply there.): GCS, ExternalName
Is this a BUG REPORT or FEATURE REQUEST?: BUG REPORT
NGINX Ingress controller version: 0.22.0
Kubernetes version (use
kubectl version
): 1.11.5Environment:
uname -a
): Linux 4.14.88-88.76.amzn2.x86_64What happened:
Trying to setup the proxy to GCS storage however running into a problem in EKS. Looked at #1809 as well.
So in EKS, I have Nginx ingress running and trying to proxy the requests to
.well-known/assetlinks.json
where.well-known/assetlinks.json
is stored in a GCS buckettest-api.xxx.co
.Ingress,
Service,
If I
curl
the endpointcurl -iv https://test-api.xxx.co/.well-known/assetlinks.json
I keep getting,And the logs,
FYI, this bucket is publicly available. I have tested it directly in GCS with
curl -iv https://storage.googleapis.com/test-api.xxx.co/.well-known/assetlinks.json
If I use
nginx.ingress.kubernetes.io/backend-protocol: HTTPS
I get the same403
back from GCS.What you expected to happen:
Bucket to be available for proxying via Nginx ingress.
How to reproduce it (as minimally and precisely as possible):
As described above I have given the ingress config.
Anything else we need to know:
The text was updated successfully, but these errors were encountered: