HTTPS Backend with Unverified Certificates

clbx · September 20, 2022, 1:50pm

Using the Kong Ingress Controller 2.6 on AKS, k8s 1.23.8

I have an upstream application that uses https with self signed certificates. I put the konghq.com/protocol: https annotation on the service. But whenever I attempt to access the ingress I get a HTTP 502 error. I beleive this is because the certificates are untrused or I’m not directing Kong to use HTTPS properly.

How can I have kong look at a service where its backend is using HTTPS and Unverified Certificates and either ignore them or specify the certificates so Kong can validate them.

traines · September 28, 2022, 11:45pm

I don’t think the gateway returns a 502 for a bad certificate, but I’m not completely sure. It does definitely return a 502 if you’ve told Kong to use HTTPS and haven’t actually pointed it to the HTTPS port.

What do your proxy container logs show? A 502 should be accompanied with additional explanation there that describes the exact nature of the error.

Topic		Replies	Views
[Solved] Kong ingress using own cert instead of Ingress-specified Questions kubernetes	3	3803	March 5, 2021
Ssl ingress controller Questions kubernetes	3	1760	December 30, 2019
Custom SSL Certs not working Questions	4	1988	March 1, 2019
Ingress can't use HTTPS as backend protocol Questions kubernetes	5	1447	November 25, 2020
Kubernetes Ingress Controller , AWS Certificate , gives 400 bad resposne error Questions kubernetes	1	1418	August 11, 2020

HTTPS Backend with Unverified Certificates

Related topics