-
Notifications
You must be signed in to change notification settings - Fork 284
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ingress example returns 404 #3808
Comments
I think the issue here may be related to the non standard ingress port. The host rule |
Traefik ingress controller works with such configuration using default ingress resource kind. Also note that |
The port is part of the authority: Maybe we can write something to modify the |
I see. Let me try to use ports 80 and 443 and see if it works. |
Thanks @calebdoxsey, changing to default ports did solve the issue for me! I didn't realize that I could run standard ports locally. Still supporting non-standard ports would be useful. Maybe Pomerium could support it through an extra annotation. |
What happened?
I followed the steps in Kubernetes guide installing and configuring ingress controller with the example verify app. All the status events seem ok (e.g. saying
config updated
) but the verify application is not accessible outside the cluster. Envoy proxy returns 404 Not Found.What did you expect to happen?
Application exposed via ingress is reachable.
How'd it happen?
https://www.pomerium.com/docs/deploying/k8s/quickstart
What's your environment like?
pomerium --version
): Imagepomerium/ingress-controller:sha-cdc389c
I have no other ingress controllers besides Pomerium installed. I've set Pomerium ingress controller class as default.
I also changed service ports to 8443 and 8080 as those are the ports my K3s LB is configured.
What's your config.yaml?
kubectl describe -n pomerium pomerium/global
:I did set the ingress public assuming it will bypass any auth. Ingress
kubectl get -n default ingress/verify -o yaml
:What did you see in the logs?
Additional context
I have Dex setup as IdP and exposed as via another ingress on another host (all hosts points to 127.0.0.1 via my local
/etc/hosts
). That ingress also gives 404 although it worked previously when I used it with Traefik without Pomerium. I assume IdP setup should not influence basic ingress controller functionality.The text was updated successfully, but these errors were encountered: