HTTPS Backend with Unverified Certificates

clbx · September 20, 2022, 1:50pm

Using the Kong Ingress Controller 2.6 on AKS, k8s 1.23.8

I have an upstream application that uses https with self signed certificates. I put the konghq.com/protocol: https annotation on the service. But whenever I attempt to access the ingress I get a HTTP 502 error. I beleive this is because the certificates are untrused or I’m not directing Kong to use HTTPS properly.

How can I have kong look at a service where its backend is using HTTPS and Unverified Certificates and either ignore them or specify the certificates so Kong can validate them.

traines · September 28, 2022, 11:45pm

I don’t think the gateway returns a 502 for a bad certificate, but I’m not completely sure. It does definitely return a 502 if you’ve told Kong to use HTTPS and haven’t actually pointed it to the HTTPS port.

What do your proxy container logs show? A 502 should be accompanied with additional explanation there that describes the exact nature of the error.

Topic		Replies	Views
[Solved] Kong ingress using own cert instead of Ingress-specified Kubernetes	3	3433	March 5, 2021
Ssl ingress controller Questions	3	1626	December 30, 2019
Custom SSL Certs not working Installation/Setup	4	1859	March 1, 2019
Ingress can't use HTTPS as backend protocol Kubernetes	5	1259	November 25, 2020
Kubernetes Ingress Controller , AWS Certificate , gives 400 bad resposne error Kubernetes	1	1280	August 11, 2020

HTTPS Backend with Unverified Certificates

Related Topics