Do I need a target-http-proxy for setting up HTTPS load balancer with Google managed SSL certificates on GKE?

You can have GKE create an ingress controller that's backed by a Google HTTPS load balancer. When you do that, you specify configuration for the ingress in a config file and GKE builds all the load balancer components. The SSL certificate (and private key) are combined into a configuration object called a SSL Certificate.That's linked to the target HTTPS proxy.The first thing to do would be to create a Google managed certificate object.This part has nothing to do with Kubernetes.The command is:

$gcloud beta compute ssl-certificates create [SSL_CERTIFICATE_NAME]  \

--domains [DOMAIN] See the attached link for more details

All you have to do for this part is to create the certificate object. You do not assign it to any target proxy. Now, for the second part: Once you have the GCP certificate object created, you can reference it when you create a Kubernetes ingress.In Kubernetes terms, this is called "using a pre-shared certificate." A pre-shared certificate is simply one that's backed by an existing GCP SSL Certificate object (whether or not that SSL Certificate is a Google managed certificate or one that you created by uploading your own key and certificate). See the attached link for more details.