I'm actively tinkering with this, so results may be inconsistent. My current config is working via curl with the -k flag (ignore cert errors), but still not working normally.
Traefik
additionalArguments:
# Prod / Staging Example:
- --certificatesresolvers.staging.acme.tlschallenge=true
- --certificatesresolvers.staging.acme.email=tim@kye.dev
- --certificatesresolvers.staging.acme.caServer=https://acme-staging-v02.api.letsencrypt.org/directory
# - --certificatesresolvers.staging.acme.httpchallenge.entryPoint=web
- --certificatesresolvers.staging.acme.storage=/certs/acme-staging.json
- --certificatesresolvers.prod.acme.tlschallenge=true
- --certificatesresolvers.prod.acme.email=tim@kye.dev
- --certificatesresolvers.prod.acme.caServer=https://acme-v02.api.letsencrypt.org/directory
# - --certificatesresolvers.prod.acme.httpchallenge.entryPoint=web
- --certificatesresolvers.prod.acme.storage=/certs/acme-production.json
ports:
web:
redirectTo: websecure
websecure:
tls:
enabled: true
# certResolver: staging
certResolver: prod
Ingress
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: snow-tracker
namespace: snow-tracker
spec:
entryPoints:
- web
- websecure
routes:
- match: Host(`snow2.alt.kye.dev`)
kind: Rule
services:
- name: snow-tracker
port: 80
tls:
certResolver: staging
domains:
- main: snow2.alt.kye.dev
Ive tried using the prod resolver, but traefik is no longer producing any logs.