Skip to content

[gitlab operator] does not change issuer after changing GitLab object

  • create a GitLab object:
apiVersion: apps.gitlab.com/v1beta1
kind: GitLab
metadata:
  name: gitlab-4
  namespace: gitlab-system
spec:
  chart:
    version: "9.0.0" # https://gitlab.com/gitlab-org/cloud-native/gitlab-operator/-/blob/<OPERATOR_VERSION>/CHART_VERSIONS
    values:
      global:
        hosts:
          domain: *****.sslip.io # use a real domain here
        ingress:
          configureCertmanager: true
          class: gitlab-nginx
      certmanager-issuer:
        email: youremail@example.com
      gitlab:
        gitaly:
          persistence:
            storageClass: nvme.network-drives.csi.timeweb.cloud
            size: 50Gi
      postgresql:
        global:
          storageClass: nvme.network-drives.csi.timeweb.cloud
        persistence:
          size: 8Gi
      minio:
        persistence:
          storageClass: nvme.network-drives.csi.timeweb.cloud
          size: 10Gi
      redis:
        master:
          persistence:
            storageClass: nvme.network-drives.csi.timeweb.cloud
            size: 5Gi
      prometheus:
        persistentVolume:
          storageClass: nvme.network-drives.csi.timeweb.cloud
      nginx-ingress:
        tcpExternalConfig: false
  • find that the issuer is not ready:
kubectl get issuers -n gitlab-system gitlab-4-issuer                     
NAME              READY   AGE
gitlab-4-issuer   False   84m
  • because we used example.com domain which is prohibited in LE
  • change the spec of GitLab:
apiVersion: apps.gitlab.com/v1beta1
kind: GitLab
metadata:
  name: gitlab-4
  namespace: gitlab-system
spec:
  chart:
    version: "9.0.0" # https://gitlab.com/gitlab-org/cloud-native/gitlab-operator/-/blob/<OPERATOR_VERSION>/CHART_VERSIONS
    values:
      global:
        hosts:
          domain: *****.sslip.io # use a real domain here
        ingress:
          configureCertmanager: true
          class: gitlab-nginx
      certmanager-issuer:
        email: youremail@vasyan-gmail.com
      gitlab:
        gitaly:
          persistence:
            storageClass: nvme.network-drives.csi.timeweb.cloud
            size: 50Gi
      postgresql:
        global:
          storageClass: nvme.network-drives.csi.timeweb.cloud
        persistence:
          size: 8Gi
      minio:
        persistence:
          storageClass: nvme.network-drives.csi.timeweb.cloud
          size: 10Gi
      redis:
        master:
          persistence:
            storageClass: nvme.network-drives.csi.timeweb.cloud
            size: 5Gi
      prometheus:
        persistentVolume:
          storageClass: nvme.network-drives.csi.timeweb.cloud
      nginx-ingress:
        tcpExternalConfig: false
  • no changes in the Issuer are observed
Edited by George Gaál