Canonical Juju

Juju overwrites existing Ingress on cluster restart

Bug #1863013 reported by Kenneth Koski on 2020-02-12

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Canonical Juju	Triaged	Low	Unassigned

Bug Description

This is related to the limitations from https://bugs.launchpad.net/juju/+bug/1849725

I have a charm that I'd like to expose via HTTPS. I can't do that with regular `juju expose`, so I edit the Ingress that Juju creates to add a TLS section. That works fine, until a cluster restart, e.g. `sudo snap stop microk8s && sudo snap start microk8s`. Juju then boots up and overwrites the existing Ingress with what it expects to be there, removing the TLS section.

The overall solution is to fix the related limitation for `juju expose`, but until that happens, the exact bug here is that I'd expect Juju to not overwrite the existing Ingress if it already exists (based on reading what looks to be the relevant source: https://github.com/juju/juju/blob/f0871dbf96db0c58ec2df8f9e32dbe1bbd47a476/caas/kubernetes/provider/ingress.go#L75), or at least log about it better, as I had to turn on TRACE logging and fight through 100's of K's of logging lines.

Tags:

Revision history for this message

Ian Booth (wallyworld) wrote on 2020-02-19:

FWIW, the charm can ask for a bespoke Ingress Resource via the k8s specific YAML with pod-spec-set

That should avoid the need to juju expose, which is more limited; juju expose originally just opened a firewall port for non-k8s models and doesn't have the modelling semantics to do more complex things in k8s.

kubernetesResources:
  ingressResources:
    - labels:
        foo: bar
      annotations:
        nginx.ingress.kubernetes.io/rewrite-target: /
      spec:
        rules:
        - http:
            paths:
            - path: /testpath
              backend:
                serviceName: test
                servicePort: 80

tags:

added: k8s

Ian Booth (wallyworld) on 2020-03-19

Changed in juju:
milestone:	none → 2.8-beta1
importance:	Undecided → Medium
status:	New → Triaged

Ian Booth (wallyworld) on 2020-04-02

Changed in juju:
milestone:	2.8-beta1 → 2.8.1

Revision history for this message

Tim Penhey (thumper) wrote on 2020-06-08:

Due to design work in this space, moving to -next for now.

Changed in juju:
milestone:	2.8.1 → 2.8-next

Revision history for this message

Canonical Juju QA Bot (juju-qa-bot) wrote on 2022-11-03:

This bug has not been updated in 2 years, so we're marking it Low importance. If you believe this is incorrect, please update the importance.

Changed in juju:
importance:	Medium → Low
tags:	added: expirebugs-bot

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.