Use of external certmanager, cluster issuer and traefik, the issuer job failed.
Summary
When using already installed certmanager, cluster issuer and traefik, the issuer job failed and automatically deletes and shows as failed.
Steps to reproduce
install the gitlab with the below values.
Configuration used
postgresql:
install: false
redis:
install: false
certmanager:
install: false
nginx-ingress:
enabled: false
gitlab:
webservice:
ingress:
tls:
secretName: git-crt-secret
registry:
ingress:
tls:
secretName: git-dk-crt-secret
gitlab-runner:
runners:
privileged: true
grafana:
grafana.ini:
server:
root_url: https://git.example.com/-/grafana/
serve_from_sub_path: true
ingress:
tls:
- hosts:
- 'git.example.com'
secretName: git-vjs-crt-secret
gitlab:
task-runner:
backups:
cron:
enabled: true
schedule: 0 4 * * *
objectStorage:
backend: 's3'
config:
secret: git-minio-secrets
key: connection
registry:
storage:
secret: git-minio-secrets
key: registryconnection
certmanager-issuer:
email: XXXXXXXXXX@gmail.com
global:
edition: ce
hosts:
domain: git.example.com
https: true
externalIP: 10.28.1.1
ssh: git.example.com
gitlab:
name: git.example.com
https: true
registry:
name: dk.example.com
https: true
redis:
host: git-redis
port: 6379
password:
enabled: false
psql:
host: git-postgres
port: 5432
database: gitlabhq_production
username: postgres
password:
useSecret: true
secret: git-postgres-secrets
key: POSTGRES_PASSWORD
geo:
enabled: true
role: primary
email:
display_name: VJS Git
from: noreply-git@example.com
reply_to: noreply-git@example.com
smtp:
enabled: true
address: example.com
port: 25
user_name: 'git@example.com'
password:
secret: git-mail-secrets
key: email_password
authentication: 'login'
appConfig:
incomingEmail:
enabled: true
address: git+%{key}@example.com
user: git@example.com
host: example.com
password:
secret: git-mail-secrets
key: email_password
serviceDeskEmail:
enabled: true
address: git+%{key}@example.com
user: git@example.com
host: example.com
password:
secret: git-mail-secrets
key: email_password
object_store:
connection:
secret: git-minio-secrets
key: connection
lfs:
bucket: gitlab-lfs-storage
connection:
secret: git-minio-secrets
key: connection
artifacts:
bucket: gitlab-artifacts-storage
connection:
secret: git-minio-secrets
key: connection
uploads:
bucket: gitlab-uploads-storage
connection:
secret: git-minio-secrets
key: connection
packages:
bucket: gitlab-packages-storage
connection:
secret: git-minio-secrets
key: connection
backups:
bucket: gitlab-backup-storage
tmpBucket: gitlab-tmp-storage
registry:
bucket: gitlab-registry-storage
minio:
enabled: false
grafana:
enabled: true
ingress:
enabled: true
configureCertmanager: true
class: traefik
annotations:
'kubernetes.io/tls-acme': true
'cert-manager.io/cluster-issuer': letsencrypt-prod
'kubernetes.io/ingress.class': traefik
'traefik.ingress.kubernetes.io/router.entrypoints': websecure
'traefik.ingress.kubernetes.io/router.tls': true
Current behavior
The job shows pod is failed
Expected behavior
It should successfully run
Versions
- Chart: 4.5.1
- Platform:
- Cloud: Baremetal
- Self-hosted: kubeadm
- Kubernetes: (
kubectl version
)- Client: Client Version: version.Info{Major:"1", Minor:"19", GitVersion:"v1.19.3", GitCommit:"1e11e4a2108024935ecfcb2912226cedeafd99df", GitTreeState:"clean", BuildDate:"2020-10-14T12:50:19Z", GoVersion:"go1.15.2", Compiler:"gc", Platform:"linux/amd64"}
- Server: Server Version: version.Info{Major:"1", Minor:"19", GitVersion:"v1.19.3", GitCommit:"1e11e4a2108024935ecfcb2912226cedeafd99df", GitTreeState:"clean", BuildDate:"2020-10-14T12:41:49Z", GoVersion:"go1.15.2", Compiler:"gc", Platform:"linux/amd64"}
- Helm: (
helm version
)- Client: version.BuildInfo{Version:"v3.4.0", GitCommit:"7090a89efc8a18f3d8178bf47d2462450349a004", GitTreeState:"clean", GoVersion:"go1.14.10"}
- Server: version.BuildInfo{Version:"v3.4.0", GitCommit:"7090a89efc8a18f3d8178bf47d2462450349a004", GitTreeState:"clean", GoVersion:"go1.14.10"}
Relevant logs
No Logs remains as the pod is deleted by job automatically.