Add tls section to ingress manifest

[ddieruf]

That was my intention with adding the tls section to the ingress. I wanted it to terminate there. Is there another ingress created somewhere for the proxy?

The current file has no tls section and the spacing for path: /broker is broken.

[michaeljmarshall]

@ddieruf - you're correct that the indentation is wrong in that file.

That was my intention with adding the tls section to the ingress. I wanted it to terminate there. Is there another ingress created somewhere for the proxy?

Can you clarify this point? Where do you want it to terminate? Also, have you tested this change to verify that it adds the support you'd like to see? Thanks!

[ddieruf]

I am running this in my home lab, where I don't have a proper device to terminate TLS or load balance. I was only running 1 instance of the proxy and wanted to use the tls feature of the ingress to handle things.

Maybe I am going about this wrong. I had envisioned tls requests coming into the proxy, then the proxy forwarding on to the broker. I am not using inter-component tls, so the proxy terminates.

I have this running but have other compatibility issues with the way Let's Encrypt sends cert data to cert-manager. They include the CA in the cert chain and don't break it out. Thus, cert-manager only creates the certstore not the truststore. So my proxy is not healthy ATM.