SSL Certs from Cert Manager take a long time for Auto DevOps and Jupyterhub
GitLab's Kubernetes integration allows you to install Cert Manager on your cluster which then will automatically provision SSL certificates for your Auto DevOps deployed applications and JupyterHub.
Right now the certificate can take a couple of minutes to become available after deploying an app. This then leads to a poor user experience as the user may think that the certificate is broken after trying to load the HTTPS route since it shows an invalid certificate for some time. We should figure out:
- Can we make it faster (closer to instant)
- Provide better UX to indicate that the cert is still being fetched
- Block a pipeline until it is fetched (this would make it clear why it's not available yet but also slows our pipelines so may not be great)
From what I remember you can look for events on the cert manager pod in K8s to see when it is fetching certs and maybe this can be used to show a status indicator or we can query something else.
It should also be noted that this is only a problem on the first deployment since after this the cert will not be re-fetched on subsequent deployments.