I am exposing a micro service running on GCP's kubernetes engine via Google's Ingress load balancer. According to Here the load balancer supports multiple SSL certificates for different domain namess.
However, only the first specified SSL certificate is returned and therefore I receive a Your connection is not private warning for a domain-b. I would love to make an ingress controller for several domains each with their own certificate.
The following approach fails:
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: some-name
spec:
tls:
- hosts:
- www.domain-a.net
- domain-a
secretName: domain-a-net
- hosts:
- www.domain-b.org
- domain-b.org
secretName: domain-b-org
backend:
serviceName: some-name
servicePort: 443
Any idea how to correctly benefit from Google's Ingress Multi SSL?
curl -k -von these hostnames and see which domain returns which cert –and add that to the question? The feature is supposed to work as documented. – Ahmet Alp Balkancurl -k -vfor both domains. I always get the secret for domain-a returned. After some testing, I have the feeling that I always get the first specified secretName in my return (domain-a-net) i.e. if I would switch the two hosts in aboves YAML file I would receive domain-b-org as a result. Thanks for your help! – Robert Weindl