braunsonm
commented
4 months ago Maybe this is also a bug but the documentation here: https://knative.dev/docs/install/operator/configuring-serving-cr/#servers-configuration-for-istio-gateways
Is wrong, you cannot configure the HTTPS protocol without the tls block. Your CR will never enter the ready status with the error configuration is invalid: server must have TLS settings for HTTPS/TLS protocols
Describe the feature
Currently the docs recommend manually editing the
Gatewayobject that is created by Knative (in the operators case) to add TLS options. This is risky as it can be overwritten by the operator. It would be must better if the operator supported specifyingtlsoptions such ascredentialNameandmodewithin theKnativeServingCR.Docs which mention manually editing the Gateway object: https://knative.dev/docs/serving/encryption/using-certificates-in-networking-layer/#manually-adding-a-tls-certificate