Install GitLab with existing cert-manager and ingress-shim
I want to install GitLab using an existing setup of Rancher 2 with existing cert-manager
using ingress-shim, so according to the docs:
Cert-manager will create Certificate resources that reference the
ClusterIssuer
for all Ingresses that have akubernetes.io/tls-acme: "true"
annotation.
(The annotation is actually kind of deprecated because the current version recommends using certmanager.k8s.io/cluster-issuer
, but that's irrelevant.)
The point is, I have cert-manager
, I have a ClusterIssuer
, so (as I understand it by now) everything the GitLab chart should do is set some annotations on the created Ingress
resources. ingress-shim
would automatically create Certificate
resources and so on.
In the configuration for this chart I am using:
global:
hosts:
domain: my.domain.com
ingress:
annotations:
kubernetes.io/tls-acme: true
certmanager:
install: false
certmanager-issuer:
email: my@email.com
However, a resource called "gitlab-issuer" is deployed with own configurations for ACME urls, issuer-email and so on unless global.ingress.configureCertmanager
is false. If I try to prevent that by setting
global.ingress.configureCertmanager: false
the chart complains that self signed certificates will be used now, which isn't enough for gitlab-runnner
.
Do I miss something?