【发布时间】:2019-10-06 11:27:14
【问题描述】:
我想使用 minikube 在本地测试我的(Helm 打包的)Kubernetes 应用程序,并使用 Kubernetes 入口将 HTTP 代理到我的应用程序提供的 HTTP 服务。但这不起作用,因为入口(或入口控制器)坚持认为连接是 HTTPS,尽管我没有请求 TLS。如何确保入口允许 HTTP?
kubectl get --output=yaml ingress 表明有一个入口资源,用于 HTTP,没有 TLS:
apiVersion: v1
items:
- apiVersion: extensions/v1beta1
kind: Ingress
metadata:
creationTimestamp: "2019-10-06T10:54:38Z"
generation: 1
labels:
app.kubernetes.io/instance: quarreling-shrimp
app.kubernetes.io/managed-by: Tiller
app.kubernetes.io/name: mc
app.kubernetes.io/version: 2.3.1-SNAPSHOT
helm.sh/chart: mc-2.3.1
name: quarreling-shrimp-mc
namespace: default
resourceVersion: "126597"
selfLink: /apis/extensions/v1beta1/namespaces/default/ingresses/quarreling-shrimp-mc
uid: 296f8d69-8f40-49c5-b352-acbc6ec1cc19
spec:
rules:
- http:
paths:
- backend:
serviceName: quarreling-shrimp-mc-be-svc
servicePort: 8080
path: /api
- backend:
serviceName: quarreling-shrimp-mc-fe
servicePort: 80
path: /
status:
loadBalancer:
ingress:
- ip: 192.168.122.66
kind: List
metadata:
resourceVersion: ""
selfLink: ""
但是当我尝试使用 HTTP 访问应用程序时,响应会尝试重定向以使用 HTTPS。这是curl -i 192.168.122.66的输出:
HTTP/1.1 308 Permanent Redirect
Server: openresty/1.15.8.1
Date: Sun, 06 Oct 2019 11:22:40 GMT
Content-Type: text/html
Content-Length: 177
Connection: keep-alive
Location: https://192.168.122.66/
<html>
<head><title>308 Permanent Redirect</title></head>
<body>
<center><h1>308 Permanent Redirect</h1></center>
<hr><center>openresty/1.15.8.1</center>
</body>
</html>
【问题讨论】:
标签: kubernetes https minikube kubernetes-ingress