Can't update Target HTTP Proxy with SSL certificate

[Orr Chen]

Hi,

I can't update a target http proxy created by a Kubernetes engine ingress to use an SSL certificate I uploaded to the same project:

$ gcloud compute target-http-proxies list

> NAME                                            URL_MAP

MY_NAME                                        MY_URL_MAP

$ gcloud compute target-http-proxies describe MY_NAME

> creationTimestamp: '2017-11-26T12:22:15.889-08:00'

id: 'MY_ID'

kind: compute#targetHttpProxy

name: MY_NAME

selfLink: https://www.googleapis.com/compute/v1/projects/MY_PROJECT/global/targetHttpProxies/MY_NAME

urlMap: https://www.googleapis.com/compute/v1/projects/MY_PROJECT/global/urlMaps/MY_NAME

$ gcloud compute target-https-proxies update  MY_NAME  --ssl-certificates MY_SSL

> ERROR: (gcloud.compute.target-https-proxies.update) Could not fetch resource:

 - The resource 'projects/MY_PROJECT/global/targetHttpsProxies/MY_NAME' was not found

I have tried this a couple of times, same results.

Thanks!

[Kamran (Google Cloud Support)]

Hello Orr,

gcloud compute target-https-proxies update command updates a target HTTPS proxy, while MY_NAME target proxy that you've described above looks like is a target HTTP proxy. For more information on updating the SSL certificate resource for an HTTPS target proxy, please visit this article.

I hope this helps.

[Orr Chen]

Thanks Kamran, I guess this is the issue.

Do you have a reference on how to create target HTTPS proxy in GKE, my goal is to serve traffic on GKE only through SSL.

Thanks,

Orr

[Carlos (Cloud Platform Support)]

There is an interesting discussion in this forum that might help you.

[Orr Chen]

Thanks guys, I was able to resolve this.

Orr