I would like to give Kubernetes Kong ingress certificate and attach it to SNIs of services upstream, just like with “regular” Kong. I could not find docs about that on Ingress Controller’s docs nor could I understand how to apply general configuration directions to this use case.
You can create a TLS secret and then associate it with SNIs and Kong will use the certificate stored in the secret when it sees the SNIs from your client.
You can also automate this process using cert-manager:
Thank you for your response. I got this working. I didn’t know that Kubernetes has already a place for generic ingress tls and it didn’t occur to me to check.