Provider is started for dynamic.yml, but configuration is empty so default cert is used

cmgordon12345 · April 1, 2025, 7:08pm

Im migrating a warden.dev (docker compose) to kubernetes (minikube). I'm having issues with the traefik container. I'm not able to get it to use my certs. The dynamic.yml is available on the container, as are there referenced certs. Here are some relevant logs

level=info msg="Starting provider *file.Provider {"watch":true,"filename":"/etc/traefik/dynamic.yml"}"

level=debug msg="Configuration received from provider file: {"http":{},"tcp":{},"udp":{},"tls":{"stores":{"default":{}}}}" providerName=file

I have verified that these certs exist on the container. Any idea why the config is loaded blank?

This is the yml the defines that dynamic.yml and treafik.yml.

kind: ConfigMap
metadata:
  name: traefik-config
data:
  traefik.yml: |
    log:
      level: DEBUG
    providers:
      file:
        filename: /etc/traefik/dynamic.yml
      kubernetesCRD: {}
    entryPoints:
      web:
        address: ":80"
      websecure:
        address: ":443"
    api:
      dashboard: true
---
apiVersion: v1
kind: ConfigMap
metadata:
  name: dynamic-config
data:
  dynamic.yml: |
    tls:
      stores:
        default:
          defaultCertificate:
            certFile: /ect/ssl/certs/exampleproject.test.crt.pem
            keyFile: /ect/ssl/certs/exampleproject.test.key.pem
      certificates:
        - certFile: /etc/ssl/certs/warden.test.crt.pem
          keyFile: /etc/ssl/certs/warden.test.key.pem
        - certFile: /etc/ssl/certs/franklin.test.crt.pem
          keyFile: /etc/ssl/certs/franklin.test.key.pem
        - certFile: /etc/ssl/certs/exampleproject.test.crt.pem
          keyFile: /etc/ssl/certs/exampleproject.test.key.pem

--- deployment yml
apiVersion: apps/v1
kind: Deployment
metadata:
  name: traefik
spec:
  replicas: 1
  selector:
    matchLabels:
      app: traefik
  template:
    metadata:
      labels:
        app: traefik
    spec:
      containers:
      - name: traefik
        image: traefik:v2.2
        ports:
        - name: http
          containerPort: 80
        - name: https
          containerPort: 443
        volumeMounts:
        - name: traefik-config
          mountPath: /etc/traefik/traefik.yml
          subPath: traefik.yml
        - name: dynamic-config
          mountPath: /etc/traefik/dynamic.yml
          subPath: dynamic.yml
        - name: ssl-certs
          mountPath: /etc/ssl/certs
      volumes:
      - name: traefik-config
        configMap:
          name: traefik-config
      - name: dynamic-config
        configMap:
          name: dynamic-config
      - name: ssl-certs
        hostPath:
          path: /mnt/certs

bluepuma77 · April 2, 2025, 6:17am

Use 3 backticks before and after code/config to make it more readable and preserve spacing, which is especially important for yaml.

cmgordon12345 · April 2, 2025, 12:56pm

thank you for the kind nudge

cmgordon12345 · April 2, 2025, 6:52pm

It's only the default that is not working. I'm able to move ahead by making sure that I have the cert for the appropriate domain listed in the dynamic.yml

Topic		Replies	Views
Trying to understand why my traefik.yml is not correct? Traefik v3 (latest) docker	0	260	July 10, 2024
How to properly configure the default ssl cert Traefik v2 kubernetes-ingress	5	11480	January 23, 2020
Provide static ssl certificate for all routers/services Traefik v2 docker	13	6631	September 26, 2019
V2.1 Secure, certs, and Auth issues - Kubernetes and Minikube Traefik v2 kubernetes-crd , kubernetes-ingress	1	664	April 24, 2020
Detect reason why user certificate is not applied Traefik v3 (latest) docker	2	139	October 15, 2024

Provider is started for dynamic.yml, but configuration is empty so default cert is used

Related topics