0

I'm following some useful tutorials on how to set https certificates for Minikube ingresses.

The thing I've noted are:

  • they always use ngrok paid service and tunneling to have a public domain to be certificated by Let's Encrypt;
  • else Let's Encrypt is not used and, as a matter of example for a local Minikube distribution, a self signed certificate is used instead.

My question is: is there a way to use Let's Encrypt with a local Minikube in a non-paid version? For example using Katacoda or other free session tools?

Alessandro Argentieri
  • 2,901
  • 3
  • 32
  • 62
  • I don't understand what are you asking for. Minikube is free, Let's Encrypt is also free. Katacoda is a learning platform which can be also used as a lab. – Crou May 19 '20 at 13:32
  • I'm asking if it's possible to use Let's Encrypt to expose an kubernetes ingress with https in your local Environment using minikube where you don't have a real public domain name. – Alessandro Argentieri May 20 '20 at 06:05
  • Why don't you use self signed cert if the domain is not real? – Crou May 20 '20 at 11:58
  • I wanted to use an external issuer because is more similar to a production case – Alessandro Argentieri May 20 '20 at 15:48

1 Answers1

1

I'm not aware of any organization that would issue you a certificate without verifying the domain.

You need to understand that in order to get a certificate a global Certificate Authority (CA) needs to validate if you have access to the domain for which certificate is being requested.

There is an article about Certificates for localhost, but still you need to create those yourself.

There is also few pages in Kubernetes docs about Certificates which you can generate yourself manually using easyrsa, openssl or cfssl. Also Manage TLS Certificates in a Cluster.

Check out this tutorial on Gardener about Request X.509 Certificates and HTTPS with self Signed Certificate.

You can read How to get HTTPS working on your local development environment in 5 minutes which explains how to self-sign and setup a cert for localhost.

Crou
  • 10,232
  • 2
  • 26
  • 31