DevFW-CICD/ingress-nginx-helm
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update docs with a warning about cert chain order (#7908)

Browse source
This commit is contained in:
James Strong 2021-11-12 14:34:29 -05:00 committed by GitHub
parent 100057d0c5
commit 8333c8c127
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
docs/user-guide/tls.md
View file

@ -4,6 +4,9 @@
Anytime we reference a TLS secret, we mean a PEM-encoded X.509, RSA (2048) secret.
!!! warning
Ensure that the certificate order is leaf->intermediate->root, otherwise the controller will not be able to import the certificate, and you'll see this error in the logs ```W1012 09:15:45.920000 6 backend_ssl.go:46] Error obtaining X.509 certificate: unexpected error creating SSL Cert: certificate and private key does not have a matching public key: tls: private key does not match public key```
You can generate a self-signed certificate and private key with:
```bash