I have a config that allows me to accept request over web (HTTP) and call my backend over https. Despite all the numerous samples that says it has worked for them I never got it to work. My HelmRelease for Traffic looks like:
apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease
metadata:
name: traefik
namespace: traefik-namespace
spec:
releaseName: traefik
chart:
spec:
chart: traefik
version: '26.0.0'
sourceRef:
kind: HelmRepository
name: traefik
namespace: traefik
values:
image:
tag: 2.11.0
ports:
web:
port: 8080
additionalArguments:
- "--serversTransport.insecureSkipVerify=true"
My ingress route looks like:
apiVersion: traefik.io/v1alpha1
kind: IngressRoute
metadata:
name: my-host-ingress-route
namespace: traefik-namespace
spec:
entryPoints:
- web
routes:
- match: (Host(`server.host.com`))
kind: Rule
services:
- name: wso2is-identity-server-service
namespace: service-namespace
passHostHeader: true
port: servlet-https
scheme: https
#serversTransport: insecure-skip-verify
tls:
secretName: wso2-identity-server-tls-secret
I tried to add serversTransport - which I eventually commented out but traefik kept saying "servers transport not found service-namespace-insecure-skip-verify@kubernetescrd". So I had to remove it.
---
apiVersion: traefik.io/v1alpha1
kind: ServersTransport
metadata:
name: insecure-skip-verify
namespace: service-namespace
spec:
insecureSkipVerify: true
When I try to access my page, traefik returned: "404 page not found"
I have read the documentation and it does not seem any of the sugggestions worked. Do I need to add any annotation to my service "wso2is-identity-server-service"?
Note that I want all requests to go to traefik via web and I need traefik to call backend as https.. I dont want a redirect to traefik websecure. I am hoping traefik can use the secret to intiate an SSL with my backend.