Hi all,
I'm using a K8S cluster on premise (MetalLB , ingress-nginx , cert-manager , clusterissuer type nginx installed ) , I want to convert my K8S deployment to Knative service to take advantage of "scale down to zero / up to infinity" , but keep the choice of http or https without being forced to only https.
Let me explain more
My App manifest in K8S used to be like:
---
kind: Deployment
...
---
kind: Service
...
---
kind: Ingress
rules:
...
---
Then ingress-nginx will help me get a let's encrypt certificate automatically, right ?
If I want my app to keep using http only , I can remove yellow, blue, red part.
If I want my app use both http & https , I can remove red part
If I want my app to use https with custom certificate I can remove yellow part , keep blue & red part.
With Knative , I get confused , I installed Knative Serving with YAML , network layer is Kourier , Magic DNS
serving-default-domain.yaml
I want Knative do the same as K8S, keep accepting both http & https , let me decide if I want to force it using https only.
this is my Knative configuration
---
configmap/config-network
data:
---
configmap/config-certmanager
data:
issuerRef: |
kind: ClusterIssuer
name: letsencrypt-http01-issuer-knative
---
---
---
This is my app manifest when converting to Knative
---
---
---
I want to force my app to use https only with red part in manifest as you can see above
Please give me some advice, thank you very much.